发布于3月6日3月6日 Members Red Hat: CVE-2024-6239: poppler: pdfinfo: crash in broken documents when using -dests parameter (Multiple Advisories) Severity 8 CVSS (AV:N/AC:L/Au:N/C:N/I:N/A:C) Published 06/21/2024 Created 09/14/2024 Added 09/13/2024 Modified 11/13/2024 Description A flaw was found in the Poppler's Pdfinfo utility. This issue occurs when using -dests parameter with pdfinfo utility. By using certain malformed input files, an attacker could cause the utility to crash, leading to a denial of service. Solution(s) redhat-upgrade-poppler redhat-upgrade-poppler-cpp redhat-upgrade-poppler-cpp-debuginfo redhat-upgrade-poppler-cpp-devel redhat-upgrade-poppler-debuginfo redhat-upgrade-poppler-debugsource redhat-upgrade-poppler-devel redhat-upgrade-poppler-glib redhat-upgrade-poppler-glib-debuginfo redhat-upgrade-poppler-glib-devel redhat-upgrade-poppler-glib-doc redhat-upgrade-poppler-qt5 redhat-upgrade-poppler-qt5-debuginfo redhat-upgrade-poppler-qt5-devel redhat-upgrade-poppler-utils redhat-upgrade-poppler-utils-debuginfo References CVE-2024-6239 RHSA-2024:5305 RHSA-2024:9167
