OSV-2020-2303

Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/poppler/OSV-2020-2303.yaml
Published
2021-01-18T00:00:08.864783Z
Modified
2022-08-02T00:11:06.572999Z
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=29651

Crash type: Use-of-uninitialized-value
Crash state:
Splash::pipeRunSimpleXBGR8
Splash::drawSpan
Splash::fillWithPattern
References

Affected packages

OSS-Fuzz / poppler

poppler

Affected ranges

Affected versions

poppler-20.*

poppler-20.12.0
poppler-20.12.1

poppler-21.*

poppler-21.01.0
poppler-21.02.0
poppler-21.03.0
poppler-21.04.0
poppler-21.05.0
poppler-21.06.0
poppler-21.06.1
poppler-21.07.0
poppler-21.08.0
poppler-21.09.0
poppler-21.10.0
poppler-21.11.0
poppler-21.12.0

poppler-22.*

poppler-22.01.0
poppler-22.02.0
poppler-22.03.0
poppler-22.04.0
poppler-22.05.0
poppler-22.06.0
poppler-22.07.0
poppler-22.08.0

Ecosystem specific

{
    "severity": "MEDIUM"
}