Bug 1130965 (CVE-2019-10025)

Summary:	VUL-1: CVE-2019-10025: xpdf: floating point exception in function ImageStream:ImageStream in Stream.cc
Product:	[Novell Products] SUSE Security Incidents	Reporter:	Robert Frohl <rfrohl>
Component:	Incidents	Assignee:	Peter Simons <peter.simons>
Status:	RESOLVED INVALID	QA Contact:	Security Team bot <security-team>
Severity:	Normal
Priority:	P4 - Low	CC:	pgajdos, smash_bz, stoyan.manolov
Version:	unspecified
Target Milestone:	---
Hardware:	Other
OS:	Other
URL:	https://smash.suse.de/issue/226993/
Whiteboard:	CVSSv3:SUSE:CVE-2019-10025:3.3:(AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L) maint:planned:update
Found By:	Security Response Team	Services Priority:
Business Priority:		Blocker:	---
Marketing QA Status:	---	IT Deployment:	---
Bug Depends on:
Bug Blocks:	1133493
Attachments:	QA Reproducer

Description Robert Frohl 2019-03-29 10:35:18 UTC

rh#1693642

An issue was discovered in Xpdf 4.01.01. There is an FPE in the function ImageStream::ImageStream at Stream.cc for nBits.

Reference:
https://forum.xpdfreader.com/viewtopic.php?f=3&t=41274

References:
https://bugzilla.redhat.com/show_bug.cgi?id=1693642
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10025
http://people.canonical.com/~ubuntu-security/cve/2019/CVE-2019-10025.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10025
https://forum.xpdfreader.com/viewtopic.php?f=3&t=41274

Comment 1 Robert Frohl 2019-03-29 11:01:24 UTC

Created attachment 801657 [details]
QA Reproducer

$ pdftoppm ImageStream::ImageStream@Stream.cc:359-23___FPE out.ppm
Error: PDF file is damaged - attempting to reconstruct xref table...
Error (357): Dictionary key must be a name object
Error (359): Dictionary key must be a name object
Error (377): Dictionary key must be a name object
Floating point exception