vulnerability

Gentoo Linux: CVE-2023-3044: Xpdf: Multiple Vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
2	(AV:L/AC:M/Au:N/C:N/I:N/A:P)	Jun 2, 2023	Sep 26, 2024	Mar 31, 2026

Severity

CVSS

(AV:L/AC:M/Au:N/C:N/I:N/A:P)

Published

Jun 2, 2023

Added

Sep 26, 2024

Modified

Mar 31, 2026

Description

An excessively large PDF page size (found in fuzz testing, unlikely in normal PDF files) can result in a divide-by-zero in Xpdf's text extraction code.

This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate.

Solution

gentoo-linux-upgrade-app-text-xpdf

References

CVE-2023-3044
https://attackerkb.com/topics/CVE-2023-3044
CWE-369
EUVD-EUVD-2023-43736
GENTOO-202409-25
https://euvd.enisa.europa.eu/vulnerability/EUVD-2023-43736

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report