CVE-2009-1187
EPSS 39.9%
Description
Integer overflow in the JBIG2 decoding feature in Poppler before 0.10.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to CairoOutputDev (CairoOutputDev.cc).
How to fix CVE-2009-1187
To remediate CVE-2009-1187, upgrade the affected package to a fixed version below.
- Debian/poppler—upgrade to 0.10.6-1 or later
Is CVE-2009-1187 being exploited?
Moderate — EPSS is 39.9%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 0.10.6-1