Severe Poppler DoS Flaw Fixed
1 - 2 min read
Oct 25, 2023
Uncontrolled Recursion has been discovered in pdfinfo and pdftops in version 0.89.0 of the Poppler PDF rendering library (CVE-2020-23804). This severe stack overflow vulnerability, which has received a National Vulnerability Database base score of 7.5 out of 10, significantly threatens the availability of impacted systems.
This flaw allows remote attackers to cause a denial of service via crafted input, leading to loss of system access.
Important updates for Poppler have been released to mitigate this severe flaw. Given this bug’s significant impact on affected systems, if left unpatched, we strongly recommend all impacted users apply the updates released by their distro(s) immediately to prevent inconvenient, costly downtime and protect access to their critical systems.
To stay on top of essential updates released by the open-source programs and applications you use, register as a LinuxSecurity user, subscribe to our Linux Advisory Watch newsletter, and customize your advisories for your distro(s). This will enable you to stay up-to-date on the latest, most significant issues impacting the security of your systems.
Follow @LS_Advisories on Twitter for real-time updates on advisories for your distro(s).
Related Articles
1 - 0 min read
Open Source is Not Insecure, Despite Common Misconceptions
1 - 0 min read
Do I Need Antivirus as a Linux User?
1 - 0 min read
Joomla XSS Bug Puts Millions of Websites at Risk of RCE
