oss-sec mailing list archives
CVE Request: Poppler -Two Denial of Service Vulnerabilities
From: Pinar Yanardag <pinar () pardus org tr>
Date: Fri, 13 Feb 2009 11:20:40 +0200
From Secunia [1]: --->8---Two vulnerabilities have been reported in Poppler, which can be exploited by malicious people to cause a DoS (Denial of Service).
1) An uninitialised memory access error in the "FormWidgetChoice::loadDefaults()" function can be exploited to cause a crash via a specially crafted PDF document.
2) An error in the "JBIG2Stream::readSymbolDictSeg()" function can be exploited to cause a crash via a specially crafted PDF document.
--->8--- [1]: http://secunia.com/Advisories/33853 -- Pinar Yanardag http://pinguar.org _____________________________ Pardus Security Team http://security.pardus.org.tr
Current thread:
- CVE Request: Poppler -Two Denial of Service Vulnerabilities Pinar Yanardag (Feb 13)
- Re: CVE Request: Poppler -Two Denial of Service Vulnerabilities Michael K. Johnson (Feb 19)