Security Advisory

CVE-2017-14977

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-10-01 23:00:00

Last updated 2024-08-05 19:42:22

Assigner mitre

State PUBLISHED

Description

The FoFiTrueType::getCFFBlock function in FoFiTrueType.cc in Poppler 0.59.0 has a NULL pointer dereference vulnerability due to lack of validation of a table pointer, which allows an attacker to launch a denial of service attack.

← Browse all CVEs View on cve.org ↗