CVE-2009-3606
Request Date: 08/05/2021
Equipment: Fossa.vertel.se
Category: Driftserver
Team: CVE
Severity Rate:
Maintenance Type:
Corrective
Package:
libpoppler73
Versions: Odoo 12 Odoo 13
Description:
CVE-2009-3606 libpoppler73 (medium urgency)
Integer overflow in the PSOutputDev::doImageL1Sep function in Xpdf before 3.02pl4, and Poppler 0.x, as used in kdegraphics KPDF, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3606