CVE-2019-12360

low-risk

Published 2019-05-27

A stack-based buffer over-read exists in FoFiTrueType::dumpString in fofi/FoFiTrueType.cc in Xpdf 4.01.01. It can, for example, be triggered by sending crafted TrueType data in a PDF document to the pdftops tool. It might allow an attacker to cause Denial of Service or leak memory data into dump content.

Do I need to act?

-

0.35% chance of exploitation

EPSS score — low exploit probability

-

Not on CISA KEV list

No confirmed active exploitation reported to CISA

?

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

7

CVSS 7.1/10 High

LOCAL / LOW complexity

Affected Products (1)

Xpdfreader

Affected Vendors

Glyphandcog

References (8)

Vendor Advisory https://forum.xpdfreader.com/viewtopic.php?f=3&t=41801

https://lists.debian.org/debian-lts-announce/2019/06/msg00002.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

Vendor Advisory https://forum.xpdfreader.com/viewtopic.php?f=3&t=41801

https://lists.debian.org/debian-lts-announce/2019/06/msg00002.html

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro...

28

/ 100

low-risk

Severity 22/34 · High

Exploitability 1/34 · Minimal

Exposure 5/34 · Minimal