In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in FoFiType1C::convertToType0 in fofi/FoFiType1C.cc when it is trying to access the second privateDicts array element, because the privateDicts array has only one element allocated. Reference: https://forum.xpdfreader.com/viewtopic.php?f=3&t=41815
Created xpdf tracking bugs for this issue: Affects: fedora-all [bug 1725690]
Created xpdf tracking bugs for this issue: Affects: epel-all [bug 1725691]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.