Lucene search
Redhat.comRH:CVE-2017-12595HistoryAug 28, 2017 - 9:18 a.m.
CVE-2017-12595
2017-08-2809:18:34
redhat.com
access.redhat.com
10
0.004 Low
EPSS
Percentile
74.8%
The tokenizer in QPDF 6.0.0 and 7.0.b1 is recursive for arrays and dictionaries, which allows remote attackers to cause a denial of service (stack consumption and segmentation fault) or possibly have unspecified other impact via a PDF document with a deep data structure, as demonstrated by a crash in QPDFObjectHandle::parseInternal in libqpdf/QPDFObjectHandle.cc.
Related
osv
osv
CVE-2017-12595
2017-08-27 15:29:00
alpinelinux
alpinelinux
CVE-2017-12595
2017-08-27 15:29:00
nvd
nvd
CVE-2017-12595
2017-08-27 15:29:00
cvelist
cvelist
CVE-2017-12595
2017-08-27 15:00:00
cve
cve
CVE-2017-12595
2017-08-27 15:29:00
ubuntucve
ubuntucve
CVE-2017-12595
2017-08-27 00:00:00
prion
prion
Design/Logic Flaw
2017-08-27 15:29:00
debiancve
debiancve
CVE-2017-12595
2017-08-27 15:29:00
nessus
nessus
Fedora 27 : cups-filters / qpdf (2018-f2e1c09437)
2018-05-01 00:00:00
EulerOS 2.0 SP3 : qpdf (EulerOS-SA-2021-1843)
2021-04-30 00:00:00
EulerOS 2.0 SP5 : qpdf (EulerOS-SA-2021-1703)
2021-03-24 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: cups-filters-1.16.1-5.fc27
2018-04-30 16:38:15
[SECURITY] Fedora 27 Update: qpdf-7.1.1-5.fc27
2018-04-30 16:38:15
openvas
openvas
Fedora Update for qpdf FEDORA-2018-f2e1c09437
2018-05-02 00:00:00
Fedora Update for cups-filters FEDORA-2018-f2e1c09437
2018-05-02 00:00:00
Huawei EulerOS: Security Advisory for qpdf (EulerOS-SA-2021-1703)
2021-03-24 00:00:00
mageia
mageia
Updated qpdf packages fix security vulnerabilities
2018-02-26 19:23:22
ubuntu
ubuntu
QPDF vulnerabilities
2018-05-07 00:00:00