Lucene search
Alpine Linux Development TeamALPINE:CVE-2022-43295HistoryNov 14, 2022 - 9:15 p.m.
CVE-2022-43295
2022-11-1421:15:21
Alpine Linux Development Team
security.alpinelinux.org
9
xpdf v4.04
stack overflow
filestream::copy()
xpdf/stream.cc:795
unix
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.0%
XPDF v4.04 was discovered to contain a stack overflow via the function FileStream::copy() at xpdf/Stream.cc:795.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-community | noarch | xpdf | < 4.05-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | xpdf | < 4.05-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | xpdf | < 4.05-r0 | UNKNOWN |
Related
nvd
nvd
CVE-2022-43295
2022-11-14 21:15:21
veracode
veracode
Stack Overflow
2024-04-10 20:03:02
debiancve
debiancve
CVE-2022-43295
2022-11-14 21:15:21
ubuntucve
ubuntucve
CVE-2022-43295
2022-11-14 00:00:00
prion
prion
Stack overflow
2022-11-14 21:15:00
cve
cve
CVE-2022-43295
2022-11-14 21:15:21
cvelist
cvelist
CVE-2022-43295
2022-11-14 00:00:00
mageia
mageia
Updated xpdf packages fix security vulnerabilities
2024-02-10 22:02:27
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0035)
2024-02-12 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.0%
Related for ALPINE:CVE-2022-43295