Heap-based Out-of-Bounds Read Vulnerability in QPDF

Heap-based Out-of-Bounds Read Vulnerability in QPDF

CVE-2017-18185 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

An issue was discovered in QPDF before 7.0.0. There is a large heap-based out-of-bounds read in the Pl_Buffer::write function in Pl_Buffer.cc. It is caused by an integer overflow in the PNG filter.

Learn more about our Web Application Penetration Testing UK.