An issue was discovered in Foxit Reader and PhantomPDF before 10.1. There is an Opt object use-after-free related to Field::ClearItems and Field::DeleteOptions, during AcroForm JavaScript execution.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26534
Reference (s):
- https://www.foxitsoftware.com/support/security-bulletins.html