UbuntuUSN-3837-1poppler vulnerabilities
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
6.9 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.019 Low
EPSS
Percentile
88.4%
Releases
- Ubuntu 18.10
- Ubuntu 18.04 ESM
- Ubuntu 16.04 ESM
- Ubuntu 14.04 ESM
Packages
- poppler - PDF rendering library
Details
It was discovered that poppler incorrectly handled certain PDF files.
An attacker could possibly use this issue to cause a denial of service.
(CVE-2018-16646, CVE-2018-19058, CVE-2018-19059, CVE-2018-19060)
It was discovered that poppler incorrectly handled certain PDF files.
An attacker could possibly use this issue to cause a denial of service.
This issue only affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS.
(CVE-2018-19149)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 18.10 | noarch | libpoppler79 | < 0.68.0-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 18.10 | noarch | gir1.2-poppler-0.18 | < 0.68.0-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 18.10 | noarch | libpoppler-cpp-dev | < 0.68.0-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 18.10 | noarch | libpoppler-cpp0v5 | < 0.68.0-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 18.10 | noarch | libpoppler-cpp0v5-dbgsym | < 0.68.0-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 18.10 | noarch | libpoppler-dev | < 0.68.0-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 18.10 | noarch | libpoppler-glib-dev | < 0.68.0-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 18.10 | noarch | libpoppler-glib-doc | < 0.68.0-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 18.10 | noarch | libpoppler-glib8 | < 0.68.0-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 18.10 | noarch | libpoppler-glib8-dbgsym | < 0.68.0-0ubuntu1.2 | UNKNOWN |
Related
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
6.9 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.019 Low
EPSS
Percentile
88.4%