CVE-2017-9776

Priority
Low
Description
Integer overflow leading to Heap buffer overflow in JBIG2Stream.cc in
pdftocairo in Poppler before 0.56 allows remote attackers to cause a denial
of service (application crash) or possibly have unspecified other impact
via a crafted PDF document.
References
Bugs
Package
Upstream:released (0.56)
Ubuntu 17.10 (Artful Aardvark):not-affected (0.57.0-2ubuntu1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):released (0.24.5-2ubuntu4.7)
Ubuntu Core 15.04:DNE
Ubuntu 16.04 LTS (Xenial Xerus):released (0.41.0-0ubuntu1.4)
Ubuntu 17.04 (Zesty Zapus):released (0.48.0-2ubuntu2.3)
Patches:
Upstream:https://cgit.freedesktop.org/poppler/poppler/commit/?id=a3a98a6d83dfbf49f565f5aa2d7c07153a7f62fc
More Information

Updated: 2017-10-06 16:14:16 UTC (commit 13471)