OSV-2021-389

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/poppler/OSV-2021-389.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2021-389

Published

2021-02-13T00:01:04.517207Z

Modified

2022-04-13T03:04:37.229998Z

Summary

Bad-cast to tt_cmap_t' (aka 'struct _tt_cmap')_cairo_truetype_index_to_ucs4

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30823

Crash type: Bad-cast
Crash state:
Bad-cast to tt_cmap_t' (aka 'struct _tt_cmap')_cairo_truetype_index_to_ucs4
_cairo_sub_font_glyph_lookup_unicode
_cairo_sub_font_map_glyph

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=30823

Affected packages

OSS-Fuzz / poppler

Package

Name: poppler
Purl: pkg:generic/poppler

Affected ranges

Type: GIT
Repo: https://gitlab.freedesktop.org/poppler/poppler.git
Events: Introduced

41f5acecf50aa6b16f95aca557dbcf6b49b8f394

Fixed

5161fa6f1ff9f7d2c19b5326aed6ad2858c30476

Ecosystem specific

{
    "severity": "HIGH",
    "introduced_range": "5b8f942fe4b9e0d3aeed3422b92362018d88429c:c72a1c31b40322f660b6529e2dab077d3bf7b79b"
}