Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The FoFiType1C::convertToType0 function in FoFiType1C.cc in Poppler 0.59.0 has a heap-based buffer over-read vulnerability if an out-of-bounds font dictionary index is encountered, which allows an attacker to launch a denial of service attack.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Poppler 缓冲区错误漏洞
Vulnerability Description
Poppler是一个用于生成PDF的C++类库,该库是从Xpdf(PDF阅读器)继承而来。 Poppler 0.59.0版本中的FoFiType1C.cc文件的‘FoFiType1C::convertToType0’函数存在安全漏洞,该漏洞源于程序没有充分的验证表单指针。攻击者可利用该漏洞造成拒绝服务(基于堆的缓冲区越边界读取)。
CVSS Information
N/A
Vulnerability Type
N/A