CVE-2017-14977

Published: 2017-10-02T01:29Z

Last Modified: 2024-11-21T03:13Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

The FoFiTrueType::getCFFBlock function in FoFiTrueType.cc in Poppler 0.59.0 has a NULL pointer dereference vulnerability due to lack of validation of a table pointer, which allows an attacker to launch a denial of service attack. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt