EPSS
Percentile
31.4%
libqpdf.so is vulnerable to denial of service. The vulnerability exists in the processXRefStream function in qpdf.cc due to improper configuration of buffer size which allows an attacker to cause an application crash via a crafted pdf file.
processXRefStream
qpdf.cc
github.com/advisories/GHSA-w55w-49h8-p8xc
github.com/qpdf/qpdf/commit/d71f05ca07eb5c7cfa4d6d23e5c1f2a800f52e8e
github.com/qpdf/qpdf/issues/701