ID CVE-2015-9252
Summary An issue was discovered in QPDF before 7.0.0. Endless recursion causes stack exhaustion in QPDFTokenizer::resolveLiteral() in QPDFTokenizer.cc, related to the QPDF::resolve function in QPDF.cc.
References
Vulnerable Configurations
  • cpe:2.3:a:qpdf_project:qpdf:2.0:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.0.5:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.0.6:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.1:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.1:rc1:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.1:rc1:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.1.2:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.1.4:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.1.4:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.1.5:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.1.5:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.2.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.2.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.2.4:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:2.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:2.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:3.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:3.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:3.0.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:3.0.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:3.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:3.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:3.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:3.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:4.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:4.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:4.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:4.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:4.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:4.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:4.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:4.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:5.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:5.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:5.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:5.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:5.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:5.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:5.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:5.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:5.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:5.1.2:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:5.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:5.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:5.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:5.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:qpdf_project:qpdf:6.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:qpdf_project:qpdf:6.0.0:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 08-05-2018 - 13:29)
Impact:
Exploitability:
CWE CWE-399
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:N/A:P
refmap via4
misc
ubuntu USN-3638-1
Last major update 08-05-2018 - 13:29
Published 13-02-2018 - 19:29
Back to Top