Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
CVE ID: | CVE-2013-7296 |
Description: | The JBIG2Stream::readSegments method in JBIG2Stream.cc in Poppler before 0.24.5 does not use the correct specifier within a format string, which allows context-dependent attackers to cause a denial of service (segmentation fault and application crash) via a crafted PDF file. |
Test IDs: | None available |
Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2013-7296 http://lists.fedoraproject.org/pipermail/package-announce/2014-January/125710.html http://security.gentoo.org/glsa/glsa-201401-21.xml http://cgit.freedesktop.org/poppler/poppler/commit/?id=58e04a08afee39370283c494ee2e4e392fd3b684 http://seclists.org/oss-sec/2014/q1/97 http://seclists.org/oss-sec/2014/q1/105 http://secunia.com/advisories/56567 http://secunia.com/advisories/56776 XForce ISS Database: poppler-jbig2stream-readsegments-dos(90552) https://exchange.xforce.ibmcloud.com/vulnerabilities/90552 |