First published: Mon Mar 25 2024(Updated: )
It was discovered that QPDF incorrectly handled certain memory operations when decoding JSON files. If a user or automated system were tricked into processing a specially crafted JSON file, QPDF could be made to crash, resulting in a denial of service, or possibly execute arbitrary code.
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/libqpdf29 | <11.5.0-1ubuntu1.1 | 11.5.0-1ubuntu1.1 |
Ubuntu Ubuntu | =23.10 | |
All of | ||
ubuntu/qpdf | <11.5.0-1ubuntu1.1 | 11.5.0-1ubuntu1.1 |
Ubuntu Ubuntu | =23.10 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.