CVE-2022-35095 The commit 772e55a2 of the SFFTools contains a segmentation violation.

This can result in a crash and potentially data corruption if the PDF is being rendered.

Version information: PSoC Creator 2019.1 and higher.

CVE identifier: CVE-2019-1109.

RCE was also discovered in PDF functionality in GitLab.com via GitLab commit 8f0e3a5c.

CVE identifier: CVE-2019-1109.

RCE was also discovered in PDF functionality in Shopify.com via Shopify commit a5d5e5d5.

CVE identifier: CVE-2018-17806.

RCE was also discovered in PDF functionality in Evernote.com via Evernote commit 85812e1d.

CVE identifier: CVE-2018-17806.

RCE was also discovered in PDF functionality in Basecamp.com via Basecamp commit d8369e08.

CVE identifier: CVE-2019-1109.

RCE was also discovered in PDF functionality in Nextcloud.com via Nextcloud commit d0c094b7.

CVE identifier: CVE-2018-17806.

RCE was also discovered in PDF functionality in Hubstaff.com via Hubstaff commit fb98cab9.

CVE identifier: CVE-2019-1109.

RCE was also discovered in PDF functionality in Weebly.com via Weebly commit 74a

Installation of PSoC Creator on Windows

To get started with PSoC Creator, you need to install the software on a Windows computer. You'll be able to use it to create software for your PSoC chips. It's available for Windows 8 or later.

Timeline

Published on: 09/23/2022 18:15:00 UTC
Last modified on: 09/27/2022 03:55:00 UTC

References