Today > | 2 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-56139

Dec. 20, 2024, 9:15 p.m.

Tags

security-advisories@github.com
CWE-121
2024-12-17
CVE-2024-56139

Product(s) Impacted

pdftools

  • up to 0.5.0

Description

pdftools is a high level tools to convert PDF files to ePUB formats. In versions up to and including 0.5.0 maliciously crafted epub files can cause a stack overflow leading to a crash. This issue has not yet been addressed and users are advised to avoid untrusted input to their systems.

Weaknesses

CWE-121
Stack-based Buffer Overflow

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

CWE ID: 121

Date

Published: Dec. 17, 2024, 7:15 p.m.

Last Modified: Dec. 20, 2024, 9:15 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

security-advisories@github.com

References

https://github.com/ security-advisories@github.com
https://github.com/ 134c704f-9b21-4f2e-91b3-4a467353bcc0