CVE-2020-25725 – In Xpdf 4.02, SplashOutputDev::endType3Char(GfxState *state) SplashOutputDev.cc:3079 is tr …

21 November 2020

Vuln ID: CVE-2020-25725

Published: 2020-11-21 06:15:12Z

Description: In Xpdf 4.02, SplashOutputDev::endType3Char(GfxState *state) SplashOutputDev.cc:3079 is trying to use the freed `t3GlyphStack->cache`, which causes an `heap-use-after-free` problem. The codes of a previous fix for nested Type 3 characters wasn’t correctly handling the case where a Type 3 char referred to another char in the same Type 3 font.

Source: NVD.NIST.GOV

Date:

21 November 2020

Categorie(s):

NVD

Tag(s):

NVD

Logpoint’s latest release: Gain control over your security operations24 April 2024
Give Your iPhone a Security Boost With This iOS 17.4 Feature – CNET24 April 2024
Secureworks enables users to view known vulnerabilities in the context of threat data24 April 2024
New Relic AI monitoring helps enterprises use AI with confidence24 April 2024
Microsoft uses its genAI leverage against China — prelude to a tech Cold War?24 April 2024