CVE-2017-18267
- Source
- https://cve.org/CVERecord?id=CVE-2017-18267
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-18267.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-18267
- Downstream
- Related
- Published
- 2018-05-10T15:29:00.220Z
- Modified
- 2026-02-12T00:35:36.915856Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler through 0.64.0 allows remote attackers to cause a denial of service (infinite recursion) via a crafted PDF file, as demonstrated by pdftops.
- References
-
- https://lists.debian.org/debian-lts-announce/2020/07/msg00018.html
- https://access.redhat.com/errata/RHBA-2019:0327
- https://access.redhat.com/errata/RHSA-2018:3140
- https://access.redhat.com/errata/RHSA-2018:3505
- https://bugzilla.freedesktop.org/show_bug.cgi?id=103238
- https://lists.debian.org/debian-lts-announce/2018/10/msg00024.html
- https://usn.ubuntu.com/3647-1/
- https://bugzilla.freedesktop.org/show_bug.cgi?id=103238
- https://lists.debian.org/debian-lts-announce/2018/10/msg00024.html
- https://bugzilla.freedesktop.org/show_bug.cgi?id=103238
Affected packages
Git
github.com/ruby/rubygems
Affected ranges
- Type
- GIT
- Repo
- https://github.com/ruby/rubygems
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
Affected versions
bundler-v2.*
bundler-v2.2.0.rc.1
bundler-v2.3.0
v1.*
v1.5.0
v1.5.1
v1.5.2
v1.6.0
v1.6.1
v1.6.2
v1.7.0
v1.7.1
v1.8.0
v1.8.1
v1.8.2
v2.*
v2.0.0
v2.0.0.preview2
v2.0.0.preview2.1
v2.0.0.preview2.2
v2.0.0.rc.1
v2.0.0.rc.2
v2.0.1
v2.0.2
v2.0.3
v2.1.0
v2.1.0.rc.1
v2.1.0.rc.2
v2.1.1
v2.1.2
v2.1.3
v2.2.0.preview.1
v2.2.0.rc.1
v2.2.1
v2.3.0
v2.4.0
v2.4.1
v2.4.2
v2.4.3
v2.4.4
v2.4.5
v2.4.6
v2.5.0
v2.5.1
v2.5.2
v2.6.0
v2.6.1
v2.6.10
v2.6.11
v2.6.12
v2.6.13
v2.6.14
v2.6.2
v2.6.3
v2.6.4
v2.6.5
v2.6.6
v2.6.7
v2.6.8
v2.6.9
v2.7.0
v2.7.1
v2.7.10
v2.7.2
v2.7.3
v2.7.4
v2.7.5
v2.7.6
v2.7.7
v2.7.8
v2.7.9
v3.*
v3.0.0
v3.0.0.beta1
v3.0.0.beta3
v3.0.1
v3.0.2
v3.0.3
v3.0.4
v3.1.0.pre1
v3.3.0
github.com/wordpress/wordpress
gitlab.freedesktop.org/poppler/poppler
Affected ranges
- Type
- GIT
- Repo
- https://gitlab.freedesktop.org/poppler/poppler
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
Affected versions
poppler-0.*
poppler-0.10.0
poppler-0.11.0
poppler-0.11.1
poppler-0.11.2
poppler-0.11.3
poppler-0.12.0
poppler-0.13.1
poppler-0.13.2
poppler-0.13.3
poppler-0.13.4
poppler-0.14.0
poppler-0.15.0
poppler-0.15.1
poppler-0.15.2
poppler-0.15.3
poppler-0.16.0
poppler-0.17.0
poppler-0.17.1
poppler-0.17.2
poppler-0.17.3
poppler-0.17.4
poppler-0.18.0
poppler-0.19.0
poppler-0.19.1
poppler-0.19.2
poppler-0.19.3
poppler-0.19.4
poppler-0.2.0
poppler-0.20.0
poppler-0.20.1
poppler-0.20.2
poppler-0.20.3
poppler-0.20.4
poppler-0.20.5
poppler-0.21.0
poppler-0.21.1
poppler-0.21.2
poppler-0.21.3
poppler-0.21.4
poppler-0.22.0
poppler-0.22.1
poppler-0.22.2
poppler-0.22.3
poppler-0.22.4
poppler-0.23.0
poppler-0.23.1
poppler-0.23.2
poppler-0.23.3
poppler-0.23.4
poppler-0.24.0
poppler-0.24.1
poppler-0.24.2
poppler-0.24.3
poppler-0.24.4
poppler-0.24.5
poppler-0.25.0
poppler-0.25.1
poppler-0.25.2
poppler-0.25.3
poppler-0.26.0
poppler-0.26.1
poppler-0.26.2
poppler-0.26.3
poppler-0.26.4
poppler-0.28.0
poppler-0.28.1
poppler-0.29.0
poppler-0.3.0
poppler-0.3.1
poppler-0.3.2
poppler-0.3.3
poppler-0.30.0
poppler-0.31.0
poppler-0.32.0
poppler-0.33.0
poppler-0.34.0
poppler-0.35.0
poppler-0.36
poppler-0.37
poppler-0.38.0
poppler-0.39
poppler-0.4.0
poppler-0.40.0
poppler-0.41.0
poppler-0.42.0
poppler-0.43
poppler-0.44
poppler-0.45
poppler-0.46
poppler-0.47
poppler-0.48
poppler-0.49
poppler-0.5.0
poppler-0.5.1
poppler-0.5.2
poppler-0.5.3
poppler-0.5.4
poppler-0.50
poppler-0.51
poppler-0.52
poppler-0.53
poppler-0.54
poppler-0.55
poppler-0.56
poppler-0.57
poppler-0.58
poppler-0.59
poppler-0.6.0
poppler-0.6.0.RC1
poppler-0.60
poppler-0.60.1
poppler-0.61
poppler-0.61.1
poppler-0.62.0
poppler-0.63.0
poppler-0.64.0
poppler-0.7.0
poppler-0.7.1
poppler-0.7.2
poppler-0.7.3
poppler-0.8.0
poppler-0.9.0
poppler-0.9.1
poppler-0.9.2
poppler-0.9.3
Other
poppler-before-fontconfig