First published: Thu Jul 04 2019(Updated: )
In Xpdf 4.01.01, there is a use-after-free vulnerability in the function JBIG2Stream::close() located at JBIG2Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Glyphandcog Xpdfreader | =4.01.01 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.