CVE-2019-12293 - In Poppler through 0.76.1, there is a heap-based buffer over-read in JPXStream::init in JPEG2000Stre

CVE-2019-12293

Summary

In Poppler through 0.76.1, there is a heap-based buffer over-read in JPXStream::init in JPEG2000Stream.cc via data with inconsistent heights or widths.

References

Vulnerable Configurations

cpe:2.3:a:freedesktop:poppler:-:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:-:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.1.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.1.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.1.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.1.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.3.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.3.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.3.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.3.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.4.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.4.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.4.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.4.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.4.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.4.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.4.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.4.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.4.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.4.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.5.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.5.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.5.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.5.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.5.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.5.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.5.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.5.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.5.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.5.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.5.9:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.5.9:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.5.90:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.5.90:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.5.91:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.5.91:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.6.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.6.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.6.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.6.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.6.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.6.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.6.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.6.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.6.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.6.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.7.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.7.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.7.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.7.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.7.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.7.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.7.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.7.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.6:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.6:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.7:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.8.7:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.6:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.6:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.7:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.10.7:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.11.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.11.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.11.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.11.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.11.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.11.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.11.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.11.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.12.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.13.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.14.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.15.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.15.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.15.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.15.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.15.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.15.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.15.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.15.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.16.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.16.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.16.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.16.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.16.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.16.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.16.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.16.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.16.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.16.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.16.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.16.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.16.6:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.16.6:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.16.7:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.16.7:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.17.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.17.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.17.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.17.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.17.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.17.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.17.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.17.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.17.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.17.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.18.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.18.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.18.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.18.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.18.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.18.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.18.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.18.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.18.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.18.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.19.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.19.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.19.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.19.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.19.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.19.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.19.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.19.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.19.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.19.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.20.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.20.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.20.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.20.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.20.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.20.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.20.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.20.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.20.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.20.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.20.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.20.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.21.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.21.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.21.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.21.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.21.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.21.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.21.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.21.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.21.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.21.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.22.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.22.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.22.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.22.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.22.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.22.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.22.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.22.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.22.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.22.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.22.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.22.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.23.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.23.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.23.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.23.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.23.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.23.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.23.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.23.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.23.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.23.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.24.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.24.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.24.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.24.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.24.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.24.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.24.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.24.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.24.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.24.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.24.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.24.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.25.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.25.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.25.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.25.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.25.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.25.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.25.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.25.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.26.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.26.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.26.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.26.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.26.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.26.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.26.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.26.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.26.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.26.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.26.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.26.5:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.28.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.28.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.28.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.28.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.29.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.29.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.30.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.30.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.31.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.31.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.32.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.32.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.33.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.33.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.34.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.34.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.35.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.35.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.36.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.36.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.37.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.37.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.38.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.38.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.39.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.39.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.40.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.40.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.41.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.41.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.42.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.42.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.43.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.43.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.44.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.44.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.45.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.45.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.46.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.46.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.47.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.47.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.48.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.48.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.49.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.49.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.50.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.50.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.51.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.51.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.52.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.52.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.53.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.53.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.54.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.54.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.55.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.55.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.56.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.56.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.57.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.57.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.58.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.58.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.59.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.59.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.60.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.60.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.60.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.60.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.61.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.61.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.61.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.61.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.62.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.62.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.63.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.63.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.64.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.64.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.65.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.65.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.66.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.66.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.67.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.67.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.68.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.68.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.69.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.69.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.70.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.70.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.70.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.70.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.71.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.71.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.72.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.72.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.73.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.73.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.74.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.74.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.75.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.75.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.76:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.76:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.76.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.76.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.76.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:poppler:0.76.1:*:*:*:*:*:*:*

CVSS

Base:	6.8 (as of 23-07-2020 - 12:15)
Impact:
Exploitability:

CWE

CWE-125

CAPEC

Infiltration of Hardware Development Environment
An attacker, leveraging the ability to manipulate components of primary support systems and tools within the development and production environments, inserts malicious software within the hardware and/or firmware development environment. The infiltration purpose is to alter developed hardware components in a system destined for deployment at the victim's organization, for the purpose of disruption or further compromise.
Overread Buffers
An adversary attacks a target by providing input that causes an application to read beyond the boundary of a defined buffer. This typically occurs when a value influencing where to start or stop reading is set to reflect positions outside of the valid memory location of the buffer. This type of attack may result in exposure of sensitive information, a system crash, or arbitrary code execution.

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:P/I:P/A:P

redhat via4

advisories

rhsa

id	RHSA-2019:2713

rpms

poppler-0:0.66.0-11.el8_0.12
poppler-cpp-0:0.66.0-11.el8_0.12
poppler-cpp-debuginfo-0:0.66.0-11.el8_0.12
poppler-cpp-devel-0:0.66.0-11.el8_0.12
poppler-debuginfo-0:0.66.0-11.el8_0.12
poppler-debugsource-0:0.66.0-11.el8_0.12
poppler-devel-0:0.66.0-11.el8_0.12
poppler-glib-0:0.66.0-11.el8_0.12
poppler-glib-debuginfo-0:0.66.0-11.el8_0.12
poppler-glib-devel-0:0.66.0-11.el8_0.12
poppler-qt5-0:0.66.0-11.el8_0.12
poppler-qt5-debuginfo-0:0.66.0-11.el8_0.12
poppler-qt5-devel-0:0.66.0-11.el8_0.12
poppler-utils-0:0.66.0-11.el8_0.12
poppler-utils-debuginfo-0:0.66.0-11.el8_0.12
evince-0:3.28.2-9.el7
evince-browser-plugin-0:3.28.2-9.el7
evince-debuginfo-0:3.28.2-9.el7
evince-devel-0:3.28.2-9.el7
evince-dvi-0:3.28.2-9.el7
evince-libs-0:3.28.2-9.el7
evince-nautilus-0:3.28.2-9.el7
poppler-0:0.26.5-42.el7
poppler-cpp-0:0.26.5-42.el7
poppler-cpp-devel-0:0.26.5-42.el7
poppler-debuginfo-0:0.26.5-42.el7
poppler-demos-0:0.26.5-42.el7
poppler-devel-0:0.26.5-42.el7
poppler-glib-0:0.26.5-42.el7
poppler-glib-devel-0:0.26.5-42.el7
poppler-qt-0:0.26.5-42.el7
poppler-qt-devel-0:0.26.5-42.el7
poppler-utils-0:0.26.5-42.el7

refmap via4

bid	108457
fedora	FEDORA-2019-0ea42f074e FEDORA-2019-cb2bff6d48
misc	https://gitlab.freedesktop.org/poppler/poppler/issues/768
mlist	[debian-lts-announce] 20190606 [SECURITY] [DLA 1815-1] poppler security update [debian-lts-announce] 20200723 [SECURITY] [DLA 2287-1] poppler security update
ubuntu	USN-4042-1

Last major update

23-07-2020 - 12:15

Published

23-05-2019 - 05:29

Last modified

23-07-2020 - 12:15