INFSA-2024:5305: Poppler security update
Information about definition
Identificator: INFSA-2024:5305
Type: security
Release date: 2024-08-27 10:11:31 UTC
Information about package
Poppler is a Portable Document Format (PDF) rendering library, used by applications such as Evince.
Vulnerabilities description
- CVE-2024-6239
A flaw was found in the Poppler's Pdfinfo utility. This issue occurs when using -dests parameter with pdfinfo utility. By using certain malformed input files, an attacker could cause the utility to crash, leading to a denial of service.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2024-6239
|
no information | 6.5 | no information |
Updated packages