The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of Apache PDFBox: overload via Infinite Loop

Synthesis of the vulnerability 

An attacker can trigger an overload via Infinite Loop of Apache PDFBox, in order to trigger a denial of service.
Impacted systems: Fedora.
Severity of this alert: 1/4.
Creation date: 30/03/2021.
Références of this alert: CVE-2021-27807, FEDORA-2021-8b17a2725e, VIGILANCE-VUL-34973.

Description of the vulnerability 

An attacker can trigger an overload via Infinite Loop of Apache PDFBox, in order to trigger a denial of service.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This cybersecurity bulletin impacts software or systems such as Fedora.

Our Vigil@nce team determined that the severity of this cybersecurity weakness is low.

The trust level is of type confirmed by the editor, with an origin of document.

An attacker with a expert ability can exploit this computer vulnerability bulletin.

Solutions for this threat 

Fedora 33: new pdfbox packages.
New packages are available:
  Fedora 33: pdfbox 2.0.23-1.fc33
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides network vulnerability patches. The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system.