Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-3702HistoryNov 05, 2010 - 6:00 p.m.
CVE-2010-3702
2010-11-0518:00:00
Debian Security Bug Tracker
security-tracker.debian.org
22
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
74.2%
The Gfx::getPos function in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, CUPS, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service (crash) via unknown vectors that trigger an uninitialized pointer dereference.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | poppler | < 0.12.4-1.2 | poppler_0.12.4-1.2_all.deb |
| Debian | 11 | all | poppler | < 0.12.4-1.2 | poppler_0.12.4-1.2_all.deb |
| Debian | 10 | all | poppler | < 0.12.4-1.2 | poppler_0.12.4-1.2_all.deb |
| Debian | 999 | all | poppler | < 0.12.4-1.2 | poppler_0.12.4-1.2_all.deb |
| Debian | 13 | all | poppler | < 0.12.4-1.2 | poppler_0.12.4-1.2_all.deb |
| Debian | 12 | all | xpdf | < 3.02-9 | xpdf_3.02-9_all.deb |
| Debian | 11 | all | xpdf | < 3.02-9 | xpdf_3.02-9_all.deb |
| Debian | 10 | all | xpdf | < 3.02-9 | xpdf_3.02-9_all.deb |
| Debian | 999 | all | xpdf | < 3.02-9 | xpdf_3.02-9_all.deb |
| Debian | 13 | all | xpdf | < 3.02-9 | xpdf_3.02-9_all.deb |
Related
oraclelinux
oraclelinux
xpdf security update
2010-10-07 00:00:00
cups security update
2010-10-07 00:00:00
xpdf security update
2010-10-07 00:00:00
nessus
nessus
SuSE 10 Security Update : libpoppler (ZYPP Patch Number 7192)
2010-11-28 00:00:00
Scientific Linux Security Update : gpdf on SL4.x i386/x86_64
2012-08-01 00:00:00
Mandriva Linux Security Advisory : poppler (MDVSA-2010:230)
2010-11-14 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:48:42
ubuntucve
ubuntucve
CVE-2010-3702
2010-10-13 00:00:00
openvas
openvas
RedHat Update for cups RHSA-2010:0754-01
2010-10-19 00:00:00
RedHat Update for xpdf RHSA-2010:0750-01
2010-10-19 00:00:00
CentOS Update for cups CESA-2010:0754 centos3 i386
2010-10-19 00:00:00
redhat
redhat
(RHSA-2010:0750) Important: xpdf security update
2010-10-07 00:00:00
(RHSA-2010:0754) Important: cups security update
2010-10-07 00:00:00
(RHSA-2010:0755) Important: cups security update
2010-10-07 00:00:00
centos
centos
cups security update
2010-10-09 22:00:58
xpdf security update
2010-10-09 22:05:05
gpdf security update
2010-10-09 22:11:24
cve
cve
CVE-2010-3702
2010-11-05 18:00:00
prion
prion
Null pointer dereference
2010-11-05 18:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2116-1] New poppler packages fix several vulnerabilities
2010-10-13 00:00:00
poppler library multiple security vulnerabilities
2010-10-13 00:00:00
osv
osv
xpdf - several vulnerabilities
2010-12-21 00:00:00
fedora
fedora
[SECURITY] Fedora 12 Update: xpdf-3.02-16.fc12
2010-11-04 23:47:08
[SECURITY] Fedora 14 Update: xpdf-3.02-16.fc14
2010-11-04 23:29:40
[SECURITY] Fedora 13 Update: xpdf-3.02-16.fc13
2010-11-04 23:32:04
debian
debian
[SECURITY] [DSA 2116-1] New poppler packages fix several vulnerabilities
2010-10-12 19:31:50
[SECURITY] [DSA 2135-1] New xpdf packages fix several vulnerabilities
2010-12-21 17:34:51
altlinux
altlinux
Security fix for the ALT Linux 5 package kdegraphics version 3.5.10-alt6
2010-10-14 00:00:00
Security fix for the ALT Linux 5 package poppler5 version 0.12.4-alt0.M51.2
2010-10-14 00:00:00
ubuntu
ubuntu
poppler vulnerabilities
2010-10-19 00:00:00
slackware
slackware
[slackware-security] xpdf
2010-11-21 00:20:46
[slackware-security] poppler
2010-11-21 00:21:03
gentoo
gentoo
Xpdf: User-assisted execution of arbitrary code
2014-02-17 00:00:00
Poppler: Multiple vulnerabilities
2013-10-06 00:00:00
freebsd
freebsd
openoffice.org -- Multiple vulnerabilities
2010-08-04 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
74.2%
Related for DEBIANCVE:CVE-2010-3702