4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.02 Low
EPSS
Percentile
88.6%
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers a free of uninitialized memory.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | cups | <Β 2.4.2-3+deb12u5 | cups_2.4.2-3+deb12u5_all.deb |
Debian | 11 | all | cups | <Β 2.3.3op2-3+deb11u6 | cups_2.3.3op2-3+deb11u6_all.deb |
Debian | 10 | all | cups | <Β 2.2.10-6+deb10u6 | cups_2.2.10-6+deb10u6_all.deb |
Debian | 999 | all | cups | <Β 2.4.7-1.2 | cups_2.4.7-1.2_all.deb |
Debian | 13 | all | cups | <Β 2.4.7-1 | cups_2.4.7-1_all.deb |
Debian | 12 | all | poppler | <Β 0.10.6-1 | poppler_0.10.6-1_all.deb |
Debian | 11 | all | poppler | <Β 0.10.6-1 | poppler_0.10.6-1_all.deb |
Debian | 10 | all | poppler | <Β 0.10.6-1 | poppler_0.10.6-1_all.deb |
Debian | 999 | all | poppler | <Β 0.10.6-1 | poppler_0.10.6-1_all.deb |
Debian | 13 | all | poppler | <Β 0.10.6-1 | poppler_0.10.6-1_all.deb |