Description
Heap Buffer Overflow vulnerability in qpdf 11.9.0 allows attackers to crash the application via the std::__shared_count() function at /bits/shared_ptr_base.h.
References (7)
Core 7
Core References
Exploit, Vendor Advisory
https://github.com/qpdf/qpdf/issues/1123
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/[email protected]/message/4WLK6ICPJUMOJNHZQWXAA5MPXG5JHZZL/
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/[email protected]/message/FX3D3YCNS6CQL3774OFUROLP3EM25ILC/
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/[email protected]/message/U3N6TULMEYVCLXO47Y5W4VWCJMSB72CB/
Mailing List vendor-advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FX3D3YCNS6CQL3774OFUROLP3EM25ILC/
Scores
CVSS v3
5.5
EPSS
0.0009
EPSS Percentile
24.9%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-122
CWE-787
Status
published
Products (4)
fedoraproject/fedora
38
fedoraproject/fedora
39
fedoraproject/fedora
40
qpdf_project/qpdf
11.9.0
Published
Feb 29, 2024
Tracked Since
Feb 18, 2026