poppler poppler-glib poppler-pdftools poppler-qt

2007-01-26

Page content

Author: voroskoi
Vulnerable: 0.5.3-1
Unaffected: 0.5.3-2siwenna1

A vulnerability has been reported in Poppler, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error within the handling of catalog dictionaries or page attributes that reference an invalid page tree node. This can be exploited to cause an infinite loop by e.g. tricking a user into opening a specially crafted PDF document.

Bug Tracker URL: http://bugs.frugalware.org/task/1637

CVEs:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0104