CVE-2019-14494

An issue was discovered in Poppler through 0.78.0. There is a divide-by-zero error in the function SplashOutputDev::tilingPatternFill at SplashOutputDev.cc.

Weakness

The product divides a value by zero.

Affected Software

Name	Vendor	Start Version	End Version
Poppler	Freedesktop	*	0.78.0 (including)
Red Hat Enterprise Linux 7	RedHat	evince-0:3.28.2-10.el7	*
Red Hat Enterprise Linux 7	RedHat	poppler-0:0.26.5-43.el7	*
Red Hat Enterprise Linux 8	RedHat	poppler-0:0.66.0-27.el8	*
Poppler	Ubuntu	bionic	*
Poppler	Ubuntu	devel	*
Poppler	Ubuntu	disco	*
Poppler	Ubuntu	esm-infra/bionic	*
Poppler	Ubuntu	trusty	*

References

https://gitlab.freedesktop.org/poppler/poppler/issues/802
https://gitlab.freedesktop.org/poppler/poppler/merge_requests/317
https://lists.debian.org/debian-lts-announce/2020/11/msg00014.html
https://lists.debian.org/debian-lts-announce/2022/09/msg00030.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AHYAM32PALHQXL3O4DKIJ3EJB6AKBOVC/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DLAQBLBIIL3A5XZQYR4MG3Z4LIPIC42P/
https://usn.ubuntu.com/4091-1/
https://gitlab.freedesktop.org/poppler/poppler/issues/802
https://gitlab.freedesktop.org/poppler/poppler/merge_requests/317
https://lists.debian.org/debian-lts-announce/2020/11/msg00014.html
https://lists.debian.org/debian-lts-announce/2022/09/msg00030.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AHYAM32PALHQXL3O4DKIJ3EJB6AKBOVC/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DLAQBLBIIL3A5XZQYR4MG3Z4LIPIC42P/
https://usn.ubuntu.com/4091-1/

NVD	https://nvd.nist.gov/vuln/detail/CVE-2019-14494
CWE	https://cwe.mitre.org/data/definitions/369.html

Divide By Zero

Weakness

Affected Software

References