CVE-2017-18185 (retired)

Priority
Description
An issue was discovered in QPDF before 7.0.0. There is a large heap-based
out-of-bounds read in the Pl_Buffer::write function in Pl_Buffer.cc. It is
caused by an integer overflow in the PNG filter.
Notes
 sarnold> The commit ec7d74a is strictly tests
 mdeslaur> this patch breaks ABI
Assigned-to
mdeslaur
More Information

Updated: 2019-09-19 16:02:58 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)