OSV-2020-1340

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/poppler/OSV-2020-1340.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2020-1340
Published
2020-07-22T21:50:07.878108Z
Modified
2022-04-13T03:04:37.268795Z
Summary
Use-of-uninitialized-value in Gfx::fillPatch
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15395

Crash type: Use-of-uninitialized-value
Crash state:
Gfx::fillPatch
Gfx::doPatchMeshShFill
Gfx::doShadingPatternFill
References

Affected packages

OSS-Fuzz / poppler

Package

Name
poppler
Purl
pkg:generic/poppler

Affected ranges

Type
GIT
Repo
https://anongit.freedesktop.org/git/poppler/poppler.git
Events

Affected versions

poppler-0.*

poppler-0.65.0
poppler-0.66.0
poppler-0.67.0
poppler-0.68.0
poppler-0.69.0
poppler-0.70.0
poppler-0.70.1
poppler-0.71.0
poppler-0.72.0
poppler-0.73.0
poppler-0.74.0
poppler-0.75.0
poppler-0.76.0
poppler-0.76.1
poppler-0.77.0

Ecosystem specific

{
    "severity": "MEDIUM",
    "introduced_range": "unknown:c9e2dc7ea7e098875e6b93566bdb1d14451c3673"
}