Unrated severityNVD Advisory· Published Jul 31, 2023· Updated Nov 4, 2025
CVE-2023-34872
CVE-2023-34872
Description
A vulnerability in Outline.cc for Poppler prior to 23.06.0 allows a remote attacker to cause a Denial of Service (DoS) (crash) via a crafted PDF file in OutlineItem::open.
Affected products
14- Outline.cc/Popplerdescription
- osv-coords13 versionspkg:rpm/opensuse/poppler&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/poppler&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/poppler-qt5&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/poppler-qt5&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/poppler-qt6&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/poppler-qt6&distro=openSUSE%20Leap%2015.5pkg:rpm/suse/poppler&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/poppler&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5pkg:rpm/suse/poppler&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP4pkg:rpm/suse/poppler&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5pkg:rpm/suse/poppler&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP5pkg:rpm/suse/poppler-qt5&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP4pkg:rpm/suse/poppler-qt5&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5
< 22.01.0-150400.3.16.1+ 12 more
- (no CPE)range: < 22.01.0-150400.3.16.1
- (no CPE)range: < 23.01.0-150500.3.5.2
- (no CPE)range: < 22.01.0-150400.3.16.1
- (no CPE)range: < 23.01.0-150500.3.5.1
- (no CPE)range: < 22.01.0-150400.3.16.1
- (no CPE)range: < 23.01.0-150500.3.5.1
- (no CPE)range: < 22.01.0-150400.3.16.1
- (no CPE)range: < 23.01.0-150500.3.5.2
- (no CPE)range: < 22.01.0-150400.3.16.1
- (no CPE)range: < 23.01.0-150500.3.5.2
- (no CPE)range: < 22.01.0-150400.3.16.1
- (no CPE)range: < 22.01.0-150400.3.16.1
- (no CPE)range: < 23.01.0-150500.3.5.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3XXL3L6RJOTLGCN7GLH2OLLNF4FJ4T7I/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JQ3NYJ43U2MA7COKGMJDARZUAAOP45D4/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SFBT75QHBWNMSDAHSXZQ2I3PBJWID36K/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W3H3GOWFE3C7543GMEN7LY4GWMWJ7D2G/mitrevendor-advisory
- gitlab.freedesktop.org/poppler/poppler/-/commit/591235c8b6c65a2eee88991b9ae73490fd9afdfemitre
- gitlab.freedesktop.org/poppler/poppler/-/issues/1399mitre
News mentions
0No linked articles in our index yet.