OSV-2018-17

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/poppler/OSV-2018-17.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2018-17
Published
2021-01-13T00:00:06.651120Z
Modified
2023-02-24T01:55:33.162743Z
Summary
Use-of-uninitialized-value in FT_Set_Transform
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=8811

Crash type: Use-of-uninitialized-value
Crash state:
FT_Set_Transform
SplashFTFont::makeGlyph
SplashFont::getGlyph
References

Affected packages

OSS-Fuzz / poppler

Package

Name
poppler
Purl
pkg:generic/poppler

Affected ranges

Type
GIT
Repo
https://gitlab.freedesktop.org/poppler/poppler.git
Events
Introduced
f821faa1795c1b25104d84e9f5a7e8ad218baa61
Fixed
af4d5f31705dcfd65319da430f87744b5c1f3616
Fixed
267228bb071016621c80fc8514927905164aaeea

Affected versions

poppler-0.*
poppler-0.66.0

Ecosystem specific 

{
    "introduced_range": "a76c8fbd50a3a5cbe0487158e9d2b325e596d2c6:1750c0155762e75d0a80ab55b50d1bfd172c2430",
    "severity": "MEDIUM"
}

Database specific

fixed_range 
"877dcec7e2357991d79508a2aefc39d1510bf235:267228bb071016621c80fc8514927905164aaeea"
source 
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/poppler/OSV-2018-17.yaml"