VDB
GCVE-VVD-MAGEIA-2017-276
GCVE-VVD-MAGEIA-2017-276
Advisory Published
Jiaqi Peng discovered that the poppler pdfunite tool incorrectly parsed
certain malformed PDF documents. If a user or automated system were tricked
into opening a crafted PDF file, an attacker could cause poppler to crash,
resulting in a denial of service (CVE-2017-7511).
It was discovered that the poppler pdfunite tool incorrectly parsed certain
malformed PDF documents. If a user or automated system were tricked into
opening a crafted PDF file, an attacker could cause poppler to hang,
resulting in a denial of service (CVE-2017-7515).
It was discovered that poppler incorrectly handled memory when processing
PDF documents. If a user or automated system were tricked into opening a
crafted PDF file, an attacker could cause poppler to consume resources,
resulting in a denial of service (CVE-2017-9406, CVE-2017-9408).
Alberto Garcia, Francisco Oca, and Suleman Ali discovered that the poppler
pdftocairo tool incorrectly parsed certain malformed PDF documents. If a
user or automated system were tricked into opening a crafted PDF file, an
attacker could cause poppler to crash, resulting in a denial of service
(CVE-2017-9775).
Integer overflow leading to Heap buffer overflow in JBIG2Stream.cc in
pdftocairo in Poppler allows attackers to cause a denial of service
(application crash) or possibly have unspecified other impact via a crafted
PDF document (CVE-2017-9776).
The function GfxImageColorMap::getGray in GfxState.cc in Poppler allows
attackers to cause a denial of service (stack-based buffer over-read and
application crash) via a crafted PDF document, related to missing color-map
validation in ImageOutputDev.cc (CVE-2017-9865).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | poppler | 0 (affected), 0.26.5-2.3.mga5 (unaffected) | — |
Aliases
Transitive aliases
GSD-2017-7511GHSA-c53c-xhhc-3hpjEUVD-2017-18343VVD-MAGEIA-2017-329EUVD-2017-18775CNVD-2017-09903GHSA-q648-2xm5-x236GHSA-jjgx-wvcc-8xv3SUSE-SU-2017:1999-1VVD-GENTOO-2017-622430GHSA-3f2q-h2mg-2c86VVD-GENTOO-2017-627390GHSA-mqrh-mcfq-vc54EUVD-2017-16528SUSE-SU-2023:4941-1EUVD-2017-16532EUVD-2017-18341WID-SEC-W-2023-3200
References
Browse GCVE Records
71,925 records in the GCVE database · Updated July 13, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.