CVE-2021-3508

Beschreibung:
A flaw was found in PDFResurrect in version 0.22b. There is an infinite loop in get_xref_linear_skipped() in pdf.c via a crafted PDF file.

CWE: CWE-835

CVSS-Bewertung
CVSS 2: MEDIUM – 4.3 (Version: 2.0)
CVSS 3: MEDIUM – 5.5 (Version: 3.1)

Links:

NVD – CVE-2021-3508
CVE – CVE-2021-3508

Link (max. 20) Quelle Tags
https://bugzilla.redhat.com/show_bug.cgi?id=1951198 MISC Issue Tracking Patch Third Party Advisory
https://github.com/enferex/pdfresurrect/issues/17 MISC Exploit Patch Third Party Advisory
https://github.com/browserslist/browserslist/pull/593 MISC Third Party Advisory
https://github.com/browserslist/browserslist/blob/e82f32d1d4100d6bc79ea0b6b6a2d281a561e33c/index.js%23L472-L474 MISC Broken Link
https://snyk.io/vuln/SNYK-JS-BROWSERSLIST-1090194 MISC Exploit Patch Third Party Advisory

Quelle: NVD – CVE-2021-3508
Datum Veröffentlichung: 2021-04-28T14:15Z, Datum letzte Änderung: 2021-05-05T20:16Z