/
/
/
CVE-2019-9903: Stack-based Buffer Overflows in Dict::find() – poppler 0.74.0

CVE-2019-9903: Stack-based Buffer Overflows in Dict::find() – poppler 0.74.0

Vulnerability Reports
March 13, 2019
Profile Icon

Jason Franscisco

Stack-based Buffer Overflows in Dict::find() – poppler 0.74.0

13 March, 2019

CVE Number

CVE-2019-9903

CWE

CWE-121: Stack-based Buffer Overflow

Product Details

Poppler is a free software utility library for rendering portable document format (PDF) documents.
URL: https://gitlab.freedesktop.org/poppler/poppler

Vulnerable Versions

0.74.0

Vulnerability Details

During our research we observed a stack-overflow in function Dict::find() located at Dict.cc in poppler

SYNOPSIS

Under Progress

Analysis

DEBUG:
ASAN :


  
  

Explore Cybersecurity Platforms

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Suspendisse varius enim in eros.

Discover Lovi

Sign up to our Newsletter