CVE-2024-7868

Published: 08/15/2024 21:15:18
In Xpdf 4.05 (and earlier), invalid header info in a DCT (JPEG) stream can lead to an uninitialized variable in the DCT decoder. The proof-of-concept PDF file causes a segfault attempting to read from an invalid address.
HIGH
CVSS v3: 8.2

Status

DocFilters Release Package State Justification Comment
25.1 xpdf (4.05) Not Affected Protected At Runtime The DocumentFilters team manages a set of patches independently of upstream security patches and applies them to Xpdf during updates. In this case, the issue was already mitigated, preventing the conditions leading to the segfault. These fixes were confirmed by executing the vendor-provided proof-of-concept for the CVE.
24.4 xpdf (4.05) Not Affected Protected At Runtime The DocumentFilters team manages a set of patches independently of upstream security patches and applies them to Xpdf during updates. In this case, the issue was already mitigated, preventing the conditions leading to the segfault. These fixes were confirmed by executing the vendor-provided proof-of-concept for the CVE.
24.4.0 xpdf (4.05) Not Affected Protected At Runtime The DocumentFilters team manages a set of patches independently of upstream security patches and applies them to Xpdf during updates. In this case, the issue was already mitigated, preventing the conditions leading to the segfault. These fixes were confirmed by executing the vendor-provided proof-of-concept for the CVE.
24.3 xpdf (4.05) Needs Triage
24.2.1 xpdf (4.05) Needs Triage
24.2 xpdf (4.05) Needs Triage
24.1 xpdf (3.02) Needs Triage
23.3 xpdf (3.02) Needs Triage
23.2.1 xpdf (3.02) Needs Triage
23.2 xpdf (3.02) Needs Triage
23.1 xpdf (3.02) Needs Triage

Severity score breakdown

Attack Complexity
LOW
Attack Vector
NETWORK
Availability Impact
HIGH
Base Score
8.2
Base Severity
HIGH
Confidentiality Impact
LOW
Integrity Impact
NONE
Privileges Required
NONE
Scope
UNCHANGED
User Interaction
NONE
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
Version
3.1

References