Unrated severityNVD Advisory· Published Apr 9, 2013· Updated Apr 29, 2026
CVE-2013-1788
CVE-2013-1788
Description
poppler before 0.22.1 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors that trigger an "invalid memory access" in (1) splash/Splash.cc, (2) poppler/Function.cc, and (3) poppler/Stream.cc.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
15- cgit.freedesktop.org/poppler/poppler/commit/nvdExploitPatch
- cgit.freedesktop.org/poppler/poppler/commit/nvdExploitPatch
- cgit.freedesktop.org/poppler/poppler/commit/nvdExploitPatch
- cgit.freedesktop.org/poppler/poppler/commit/nvdExploitPatch
- cgit.freedesktop.org/poppler/poppler/commit/nvdExploitPatch
- secunia.com/advisories/52846nvdVendor Advisory
- j00ru.vexillium.orgnvd
- lists.fedoraproject.org/pipermail/package-announce/2013-March/100081.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2013-March/100090.htmlnvd
- ubuntu.com/usn/usn-1785-1nvd
- www.debian.org/security/2013/dsa-2719nvd
- www.mandriva.com/security/advisoriesnvd
- www.openwall.com/lists/oss-security/2013/02/28/4nvd
- www.openwall.com/lists/oss-security/2013/02/28/8nvd
- bugzilla.redhat.com/show_bug.cginvd
News mentions
0No linked articles in our index yet.