CVE-2017-9775

Source
Severity Medium
Remote Yes
Type Arbitrary code execution
Description
A stack buffer overflow in has been found in GfxState.cc's module of poppler. Due to some restrictions in the lines after the bug, an attacker can't control the values written in the stack so it unlikely this could lead to a code execution.
Group Package Affected Fixed Severity Status Ticket
AVG-326 poppler 0.55.0-3 0.56.0-1 High Fixed
Date Advisory Group Package Severity Description
26 Jun 2017 ASA-201706-33 AVG-326 poppler High arbitrary code execution
References
https://bugs.freedesktop.org/show_bug.cgi?id=101540
https://cgit.freedesktop.org/poppler/poppler/commit/?id=8f4ff8243a3d599ff2a6c08b1da389e606ba4fc9