aosc-os-abbs icon indicating copy to clipboard operation
aosc-os-abbs copied to clipboard

Published 20 hours ago verified publisher icon AOSC-Dev

poppler: JBIG2 Integer Overflow (CVE-2021-30860, CVE-2022-38784)

Open CamberLoid opened this issue 2 years ago • 0 comments

CVE IDs

CVE-2021-30860, CVE-2022-38784

Other security advisory IDs

  • Gentoo: https://security.gentoo.org/glsa/202209-21

Description

An integer overflow was addressed with improved input validation. Processing a maliciously crafted PDF may lead to arbitrary code execution. The issue was assigned to CVE-2021-30860 and the same issue of poppler was assigned to CVE-2022-38784.

An upgrade to 22.09 will fix the problem.

Patches

N/A

PoC(s)

N/A

CamberLoid avatar Oct 12 '22 03:10 CamberLoid