Security Advisory

CVE-2019-13287

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-07-04 21:06:50

Last updated 2024-08-04 23:49:24

Assigner mitre

State PUBLISHED

Description

In Xpdf 4.01.01, there is an out-of-bounds read vulnerability in the function SplashXPath::strokeAdjust() located at splash/SplashXPath.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure. This is related to CVE-2018-16368.

← Browse all CVEs View on cve.org ↗