Memory Allocation Vulnerability in xpdf 4.04

Memory Allocation Vulnerability in xpdf 4.04

CVE-2022-30775 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

xpdf 4.04 allocates excessive memory when presented with crafted input. This can be triggered by (for example) sending a crafted PDF document to the pdftoppm binary. It is most easily reproduced with the DCMAKE_CXX_COMPILER=afl-clang-fast++ option.

Learn more about our Web Application Penetration Testing UK.