A vulnerability in Outline.cc for Poppler prior to 23.06.0 allows a remote attacker to cause a Denial of Service (DoS) (crash) via a crafted PDF file in OutlineItem::open.
{ "vanir_signatures": [ { "target": { "file": "poppler/Outline.cc" }, "id": "CVE-2023-34872-052a87e3", "source": "https://gitlab.freedesktop.org/poppler/poppler@591235c8b6c65a2eee88991b9ae73490fd9afdfe", "digest": { "line_hashes": [ "35625750558623308352230351458397072526", "184373857616747856292590674917599720888", "232688056927255012942220143723711659217", "179045058357070891833613213611406836504", "163677711532703695125451390698642366930", "58315332789970958182405206062752451473" ], "threshold": 0.9 }, "signature_version": "v1", "deprecated": false, "signature_type": "Line" }, { "target": { "file": "poppler/Outline.cc", "function": "OutlineItem::open" }, "id": "CVE-2023-34872-3de5e5b1", "source": "https://gitlab.freedesktop.org/poppler/poppler@591235c8b6c65a2eee88991b9ae73490fd9afdfe", "digest": { "length": 188.0, "function_hash": "117859367643787765699059183892513916194" }, "signature_version": "v1", "deprecated": false, "signature_type": "Function" } ] }