CVE-2018-16368

Publication date

2018-09-03 00:00:00

Family

mitre

State

PUBLISHED

Description

SplashXPath::strokeAdjust in splash/SplashXPath.cc in Xpdf 4.00 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted pdf file, as demonstrated by pdftoppm.