A logic error in the Hints::Hints function of Poppler v22.03.0 allows attackers to cause a Denial of Service (DoS) via a crafted PDF file.
Created mingw-poppler tracking bugs for this issue: Affects: fedora-all [bug 2090966] Created poppler tracking bugs for this issue: Affects: fedora-all [bug 2090965]
Issue: https://gitlab.freedesktop.org/poppler/poppler/-/issues/1230 Fix: https://gitlab.freedesktop.org/poppler/poppler/-/commit/81044c64b9ed9a10ae82a28bac753060bdfdac74
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2022:7594 https://access.redhat.com/errata/RHSA-2022:7594
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2022:8151 https://access.redhat.com/errata/RHSA-2022:8151
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2022-27337