CVE-2022-24196 iText v7.1.17 had an out-of-memory error that can be exploited via a crafted PDF file.

This issue was addressed by changing the length limit on streams. An attacker can still cause a DoS by sending a crafted PDF file. This issue was discovered by Antoine.

CVE-2022-24197

This issue was addressed by changing the length limit on streams. An attacker can still cause a DoS by sending a crafted PDF file. This issue was discovered by Antoine.

Facebook is an excellent platform for advertising because there are so many different ways to do it, and you can target your audience more precisely than traditional methods. With Facebook, you can also reach people interested in your products or services through targeted ads.

GitHub - CVE-2023-24197

In versions prior to 6.6.0, X-Frame-Options headers are not properly verified for all requests. This issue was discovered by Antoine.

Timeline

Published on: 02/01/2022 20:15:00 UTC
Last modified on: 06/16/2022 19:29:00 UTC

References

• https://github.com/itext/itext7/pull/78
• https://github.com/itext/itext7/pull/78#issuecomment-1089279222
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-24196