CVE-2013-1788

EPSS 4.1%

poppler - multiple issues

Published: 4/9/2013Modified: 4/28/2026

Also known as:DEBIAN-CVE-2013-1788

Description

poppler before 0.22.1 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors that trigger an "invalid memory access" in (1) splash/Splash.cc, (2) poppler/Function.cc, and (3) poppler/Stream.cc.

Affected packages (2)

Debian/popplerfrom 0, < 0.18.4-6
Debian/popplerfrom 0, < 0.12.4-1.2+squeeze3

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-1788