VDB

DEBIAN-CVE-2024-56378

DEBIAN-CVE-2024-56378 PUBLISHED CVSS 4.300000190734863 MEDIUM

libpoppler.so in Poppler through 24.12.0 has an out-of-bounds read vulnerability within the JBIG2Bitmap::combine function in JBIG2Stream.cc.

Risk Scores

CVSS 3.1
4.300000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Affected Products

VendorProductVersions
Debian:14poppler0, 0
Debian:11poppler20.09.0-3.1, 20.09.0-3.1, 20.09.0-3.1+deb11u1
Debian:13poppler0, 0
Debian:12poppler0, 22.12.0-2, 0

Timeline

  • Dec 23, 2024 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›