Medium severity5.5OSV Advisory· Published Feb 13, 2018· Updated Jun 17, 2026
CVE-2017-18184
CVE-2017-18184
Description
An issue was discovered in QPDF before 7.0.0. There is a stack-based out-of-bounds read in the function iterate_rc4 in QPDF_encryption.cc.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2release-qpdf-2.0, release-qpdf-2.0.1, release-qpdf-2.0.2, …+ 1 more
- (no CPE)range: release-qpdf-2.0, release-qpdf-2.0.1, release-qpdf-2.0.2, …
- (no CPE)range: <7.0.0
Patches
Vulnerability mechanics
References
3- github.com/qpdf/qpdf/commit/dea704f0ab7f625e1e7b3f9a1110b45b63157317nvdPatchThird Party Advisory
- github.com/qpdf/qpdf/issues/147nvdIssue TrackingThird Party Advisory
- usn.ubuntu.com/3638-1/nvd
News mentions
0No linked articles in our index yet.