Lucene search

ROSA LABROSA-SA-2023-2303

HistoryDec 05, 2023 - 10:41 a.m.

Advisory ROSA-SA-2023-2303

2023-12-0510:41:22

ROSA LAB

abf.rosalinux.ru

poppler

vulnerability

denial of service

pdf

fixed

6.8 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

53.0%

JSON

software: poppler 22.05.0
WASP: ROSA-CHROME

package_evr_string: poppler-22.05.0-7.src.rpm

CVE-ID: CVE-2023-34872
BDU-ID: None
CVE-Crit: MEDIUM
CVE-DESC.: A vulnerability in Outline.cc for Poppler before version 23.06.0 allows a remote attacker to cause a denial of service (DoS) (crash) via a created PDF file in OutlineItem::open.
CVE-STATUS: Fixed
CVE-REV: To close, run the command: sudo dnf update poppler

OSVersionArchitecturePackageVersionFilename
ROSAanynoarchpoppler< 22.05.0UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ROSA	any	noarch	poppler	< 22.05.0	UNKNOWN