Note:
This project will be discontinued after December 13, 2021. [more]
2018-02-24
An out-of-bounds read in JPXStream::readTilePart in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml.
| Products | Xpdf |
| Type | Out-of-bounds Read (CWE-125) |
| First patch | - None (likely due to unavailable code) |
| Links | https://forum.xpdfreader.com/viewtopic.php?f=3&t=654&p=819#p819 |