vulnerability

Alpine Linux: CVE-2023-3044: Divide By Zero

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
2	(AV:L/AC:M/Au:N/C:N/I:N/A:P)	Jun 2, 2023	Aug 22, 2024	Mar 25, 2026

Severity

CVSS

(AV:L/AC:M/Au:N/C:N/I:N/A:P)

Published

Jun 2, 2023

Added

Aug 22, 2024

Modified

Mar 25, 2026

Description

An excessively large PDF page size (found in fuzz testing, unlikely in normal PDF files) can result in a divide-by-zero in Xpdf's text extraction code.

This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate.

Solution

alpine-linux-upgrade-xpdf

References

CVE-2023-3044
https://attackerkb.com/topics/CVE-2023-3044
https://security.alpinelinux.org/vuln/CVE-2023-3044
https://euvd.enisa.europa.eu/vulnerability/EUVD-2023-43736
CWE-369
EUVD-EUVD-2023-43736

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report