libpoppler.so in Poppler through 24.12.0 has an out-of-bounds read vulnerability within the JBIG2Bitmap::combine function in JBIG2Stream.cc.
History

Mon, 23 Dec 2024 13:30:00 +0000

Type Values Removed Values Added
Title Poppler: out-of-bounds read
Weaknesses CWE-125
References
Metrics threat_severity

None

cvssV3_1

{'score': 4.4, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L'}

threat_severity

Moderate


Sun, 22 Dec 2024 23:45:00 +0000

Type Values Removed Values Added
Description libpoppler.so in Poppler through 24.12.0 has an out-of-bounds read vulnerability within the JBIG2Bitmap::combine function in JBIG2Stream.cc.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-12-22T00:00:00

Updated: 2024-12-22T23:32:43.261713

Reserved: 2024-12-22T00:00:00

Link: CVE-2024-56378

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2024-12-23T00:15:05.133

Modified: 2024-12-23T00:15:05.133

Link: CVE-2024-56378

cve-icon Redhat

Severity : Moderate

Publid Date: 2024-12-22T00:00:00Z

Links: CVE-2024-56378 - Bugzilla