Name | CVE-2020-19466 |
Description | An issue has been found in function DCTStream::transformDataUnit in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid read of size 1 . |
Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
NOT-FOR-US: pdf2json
pdf2json bundles a 14 year old xpdf release (3.0.2), there's no point in
tracking whether this affects src:poppler