CVE-2017-7511: Null Pointer Dereference
First published: Tue May 30 2017(Updated: )
poppler since version 0.17.3 has been vulnerable to NULL pointer dereference in pdfunite triggered by specially crafted documents.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Poppler Data | =0.17.3 | |
| Poppler Data | =0.17.4 | |
| Poppler Data | =0.18.0 | |
| Poppler Data | =0.18.1 | |
| Poppler Data | =0.18.2 | |
| Poppler Data | =0.18.3 | |
| Poppler Data | =0.18.4 | |
| Poppler Data | =0.19.0 | |
| Poppler Data | =0.19.1 | |
| Poppler Data | =0.19.2 | |
| Poppler Data | =0.19.3 | |
| Poppler Data | =0.19.4 | |
| Poppler Data | =0.20.0 | |
| Poppler Data | =0.20.1 | |
| Poppler Data | =0.20.2 | |
| Poppler Data | =0.20.3 | |
| Poppler Data | =0.20.4 | |
| Poppler Data | =0.20.5 | |
| Poppler Data | =0.21.0 | |
| Poppler Data | =0.21.1 | |
| Poppler Data | =0.21.2 | |
| Poppler Data | =0.21.3 | |
| Poppler Data | =0.21.4 | |
| Poppler Data | =0.22.0 | |
| Poppler Data | =0.22.1 | |
| Poppler Data | =0.22.2 | |
| Poppler Data | =0.22.3 | |
| Poppler Data | =0.22.4 | |
| Poppler Data | =0.22.5 | |
| Poppler Data | =0.23.0 | |
| Poppler Data | =0.23.1 | |
| Poppler Data | =0.23.2 | |
| Poppler Data | =0.23.3 | |
| Poppler Data | =0.23.4 | |
| Poppler Data | =0.24.0 | |
| Poppler Data | =0.24.1 | |
| Poppler Data | =0.24.2 | |
| Poppler Data | =0.24.3 | |
| Poppler Data | =0.24.4 | |
| Poppler Data | =0.24.5 | |
| Poppler Data | =0.25.0 | |
| Poppler Data | =0.25.1 | |
| Poppler Data | =0.25.2 | |
| Poppler Data | =0.25.3 | |
| Poppler Data | =0.26.0 | |
| Poppler Data | =0.26.1 | |
| Poppler Data | =0.26.2 | |
| Poppler Data | =0.26.3 | |
| Poppler Data | =0.26.4 | |
| Poppler Data | =0.26.5 | |
| Poppler Data | =0.28.0 | |
| Poppler Data | =0.28.1 | |
| Poppler Data | =0.29.0 | |
| Poppler Data | =0.30.0 | |
| Poppler Data | =0.31.0 | |
| Poppler Data | =0.32.0 | |
| Poppler Data | =0.33.0 | |
| Poppler Data | =0.34.0 | |
| Poppler Data | =0.35.0 | |
| Poppler Data | =0.36.0 | |
| Poppler Data | =0.37.0 | |
| Poppler Data | =0.38.0 | |
| Poppler Data | =0.39.0 | |
| Poppler Data | =0.40.0 | |
| Poppler Data | =0.41.0 | |
| Poppler Data | =0.42.0 | |
| Poppler Data | =0.43.0 | |
| Poppler Data | =0.44.0 | |
| Poppler Data | =0.45.0 | |
| Poppler Data | =0.46.0 | |
| Poppler Data | =0.47.0 | |
| Poppler Data | =0.48.0 | |
| Poppler Data | =0.49.0 | |
| Poppler Data | =0.50.0 | |
| Poppler Data | =0.51.0 | |
| Poppler Data | =0.52.0 | |
| Poppler Data | =0.53.0 | |
| Poppler Data | =0.54.0 | |
| Poppler Data | =0.55.0 |
Remedy
https://cgit.freedesktop.org/poppler/poppler/commit/?id=5c9b08a875b07853be6c44e43ff5f7f059df666a
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-7511?
CVE-2017-7511 has been rated as a high severity vulnerability due to the potential for a NULL pointer dereference which may lead to application crashes.
How do I fix CVE-2017-7511?
To fix CVE-2017-7511, upgrade to a version of Poppler that is later than 0.54.0 where this vulnerability has been resolved.
Which versions of Poppler are affected by CVE-2017-7511?
CVE-2017-7511 affects Poppler versions from 0.17.3 to 0.54.0.
What type of vulnerability is CVE-2017-7511?
CVE-2017-7511 is a vulnerability that results in a NULL pointer dereference in the pdfunite component of Poppler.
What could happen if I don't address CVE-2017-7511?
If CVE-2017-7511 is not addressed, attackers could craft malicious PDF documents that may crash the application or potentially exploit further vulnerabilities.
- agent/references
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/weakness
- agent/tags
- agent/description
- agent/softwarecombine
- agent/severity
- agent/remedy
- agent/author
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/freedesktop
- canonical/poppler data
- version/poppler data/0.17.3
- version/poppler data/0.17.4
- version/poppler data/0.18.0
- version/poppler data/0.18.1
- version/poppler data/0.18.2
- version/poppler data/0.18.3
- version/poppler data/0.18.4
- version/poppler data/0.19.0
- version/poppler data/0.19.1
- version/poppler data/0.19.2
- version/poppler data/0.19.3
- version/poppler data/0.19.4
- version/poppler data/0.20.0
- version/poppler data/0.20.1
- version/poppler data/0.20.2
- version/poppler data/0.20.3
- version/poppler data/0.20.4
- version/poppler data/0.20.5
- version/poppler data/0.21.0
- version/poppler data/0.21.1
- version/poppler data/0.21.2
- version/poppler data/0.21.3
- version/poppler data/0.21.4
- version/poppler data/0.22.0
- version/poppler data/0.22.1
- version/poppler data/0.22.2
- version/poppler data/0.22.3
- version/poppler data/0.22.4
- version/poppler data/0.22.5
- version/poppler data/0.23.0
- version/poppler data/0.23.1
- version/poppler data/0.23.2
- version/poppler data/0.23.3
- version/poppler data/0.23.4
- version/poppler data/0.24.0
- version/poppler data/0.24.1
- version/poppler data/0.24.2
- version/poppler data/0.24.3
- version/poppler data/0.24.4
- version/poppler data/0.24.5
- version/poppler data/0.25.0
- version/poppler data/0.25.1
- version/poppler data/0.25.2
- version/poppler data/0.25.3
- version/poppler data/0.26.0
- version/poppler data/0.26.1
- version/poppler data/0.26.2
- version/poppler data/0.26.3
- version/poppler data/0.26.4
- version/poppler data/0.26.5
- version/poppler data/0.28.0
- version/poppler data/0.28.1
- version/poppler data/0.29.0
- version/poppler data/0.30.0
- version/poppler data/0.31.0
- version/poppler data/0.32.0
- version/poppler data/0.33.0
- version/poppler data/0.34.0
- version/poppler data/0.35.0
- version/poppler data/0.36.0
- version/poppler data/0.37.0
- version/poppler data/0.38.0
- version/poppler data/0.39.0
- version/poppler data/0.40.0
- version/poppler data/0.41.0
- version/poppler data/0.42.0
- version/poppler data/0.43.0
- version/poppler data/0.44.0
- version/poppler data/0.45.0
- version/poppler data/0.46.0
- version/poppler data/0.47.0
- version/poppler data/0.48.0
- version/poppler data/0.49.0
- version/poppler data/0.50.0
- version/poppler data/0.51.0
- version/poppler data/0.52.0
- version/poppler data/0.53.0
- version/poppler data/0.54.0
- version/poppler data/0.55.0