Poppler 22.08.0 DoS via Assertion in Object.h (PDFDoc::replacePageDict)
CVE-2022-38349 Published on August 22, 2023

An issue was discovered in Poppler 22.08.0. There is a reachable assertion in Object.h, will lead to denial of service because PDFDoc::replacePageDict in PDFDoc.cc lacks a stream check before saving an embedded file.

NVD

Products Associated with CVE-2022-38349

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2022-38349 are published in these products:

FreeDesktop Poppler

Canonical Ubuntu Linux

Poppler

Exploit Probability

EPSS

0.02%

Percentile

5.41%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Poppler 22.08.0 DoS via Assertion in Object.h (PDFDoc::replacePageDict)CVE-2022-38349 Published on August 22, 2023

Products Associated with CVE-2022-38349

Exploit Probability

Poppler 22.08.0 DoS via Assertion in Object.h (PDFDoc::replacePageDict)
CVE-2022-38349 Published on August 22, 2023