CVE-2023-2662: Divide-by-zero in Xpdf 4.04 due to bad color space object
First published: Thu May 11 2023(Updated: )
In Xpdf 4.04 (and earlier), a bad color space object in the input PDF file can cause a divide-by-zero.
Credit: xpdf@xpdfreader.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Xpdfreader Xpdf | <=4.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Xpdf vulnerability?
The vulnerability ID for this Xpdf vulnerability is CVE-2023-2662.
What is the affected software and version for this vulnerability?
The affected software and version for this vulnerability is Xpdf 4.04 (and earlier).
What is the severity rating for this vulnerability?
The severity rating for this vulnerability is medium with a value of 5.5.
How can a bad color space object in the input PDF file cause a divide-by-zero?
A bad color space object in the input PDF file can cause a divide-by-zero due to a vulnerability in Xpdf 4.04 (and earlier).
Is there a fix available for this vulnerability?
It is recommended to update to a version of Xpdf that is not affected by this vulnerability.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/weakness
- agent/references
- agent/title
- agent/description
- agent/tags
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- vendor/xpdfreader
- canonical/xpdfreader xpdf
- version/xpdfreader xpdf/4.04