ID CVE-2017-7511
Summary poppler since version 0.17.3 has been vulnerable to NULL pointer dereference in pdfunite triggered by specially crafted documents.
References
Vulnerable Configurations
  • cpe:2.3:a:freedesktop:poppler:0.17.3:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.17.3:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.17.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.17.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.18.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.18.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.18.1:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.18.1:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.18.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.18.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.18.3:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.18.3:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.18.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.18.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.19.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.19.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.19.1:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.19.1:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.19.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.19.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.19.3:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.19.3:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.19.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.19.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.20.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.20.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.20.1:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.20.1:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.20.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.20.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.20.3:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.20.3:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.20.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.20.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.20.5:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.20.5:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.21.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.21.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.21.1:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.21.1:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.21.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.21.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.21.3:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.21.3:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.21.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.21.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.22.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.22.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.22.1:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.22.1:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.22.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.22.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.22.3:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.22.3:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.22.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.22.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.22.5:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.22.5:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.23.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.23.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.23.1:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.23.1:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.23.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.23.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.23.3:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.23.3:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.23.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.23.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.24.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.24.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.24.1:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.24.1:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.24.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.24.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.24.3:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.24.3:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.24.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.24.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.24.5:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.24.5:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.25.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.25.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.25.1:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.25.1:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.25.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.25.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.25.3:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.25.3:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.26.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.26.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.26.1:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.26.1:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.26.2:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.26.2:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.26.3:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.26.3:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.26.4:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.26.4:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.26.5:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.26.5:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.28.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.28.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.28.1:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.28.1:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.29.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.29.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.30.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.30.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.31.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.31.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.32.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.32.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.33.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.33.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.34.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.34.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.35.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.35.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.36.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.36.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.37.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.37.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.38.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.38.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.39.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.39.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.40.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.40.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.41.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.41.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.42.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.42.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.43.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.43.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.44.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.44.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.45.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.45.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.46.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.46.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.47.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.47.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.48.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.48.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.49.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.49.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.50.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.50.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.51.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.51.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.52.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.52.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.53.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.53.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.54.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.54.0:*:*:*:*:*:*:*
  • cpe:2.3:a:freedesktop:poppler:0.55.0:*:*:*:*:*:*:*
    cpe:2.3:a:freedesktop:poppler:0.55.0:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 18-01-2018 - 18:18)
Impact:
Exploitability:
CWE CWE-476
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:N/A:P
refmap via4
confirm https://cgit.freedesktop.org/poppler/poppler/commit/?id=5c9b08a875b07853be6c44e43ff5f7f059df666a
gentoo GLSA-201801-17
Last major update 18-01-2018 - 18:18
Published 30-05-2017 - 18:29
Last modified 18-01-2018 - 18:18
Back to Top