Wind River Support Network

HomeDefectsLIN1023-200
Fixed

LIN1023-200 : Security Advisory - poppler - CVE-2022-24106

Created: Apr 27, 2023    Updated: Dec 30, 2024
Resolved Date: Dec 27, 2023
Found In Version: 10.23.30.1
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Userspace

Description

In Xpdf prior to 4.04, the DCT (JPEG) decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc.

CREATE(Triage):(User=admin) CVE-2022-24106 (https://nvd.nist.gov/vuln/detail/CVE-2022-24106)
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube