Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-4646-1
HistoryNov 25, 2020 - 12:00 a.m.

poppler vulnerabilities

2020-11-2500:00:00
ubuntu.com
66

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

80.7%

JSON

Releases

  • Ubuntu 18.04 ESM
  • Ubuntu 16.04 ESM

Packages

  • poppler - PDF rendering library

Details

It was discovered that Poppler incorrectly handled certain files. If a user
or automated system were tricked into opening a crafted PDF file, an
attacker could cause a denial of service.

OSVersionArchitecturePackageVersionFilename
Ubuntu18.04noarchlibpoppler73< 0.62.0-2ubuntu2.11UNKNOWN
Ubuntu18.04noarchgir1.2-poppler-0.18< 0.62.0-2ubuntu2.11UNKNOWN
Ubuntu18.04noarchlibpoppler-cpp-dev< 0.62.0-2ubuntu2.11UNKNOWN
Ubuntu18.04noarchlibpoppler-cpp0v5< 0.62.0-2ubuntu2.11UNKNOWN
Ubuntu18.04noarchlibpoppler-cpp0v5-dbgsym< 0.62.0-2ubuntu2.11UNKNOWN
Ubuntu18.04noarchlibpoppler-dev< 0.62.0-2ubuntu2.11UNKNOWN
Ubuntu18.04noarchlibpoppler-glib-dev< 0.62.0-2ubuntu2.11UNKNOWN
Ubuntu18.04noarchlibpoppler-glib-doc< 0.62.0-2ubuntu2.11UNKNOWN
Ubuntu18.04noarchlibpoppler-glib8< 0.62.0-2ubuntu2.11UNKNOWN
Ubuntu18.04noarchlibpoppler-glib8-dbgsym< 0.62.0-2ubuntu2.11UNKNOWN
Rows per page:
1-10 of 451

Related

osv 13
openvas 35
nessus 56
amazon 2
mageia 2
debian 6
oraclelinux 3
redhat 3
centos 1
prion 5
rosalinux 1
ubuntucve 5
debiancve 5
redhatcve 4
cve 5
ubuntu 1
veracode 4
cnvd 1
almalinux 1
alpinelinux 2
fedora 7
rocky 1
suse 1
kitploit 1
osv
osv
poppler vulnerabilities
2020-11-25 18:03:42
CVE-2018-21009
2019-09-05 04:15:09
CVE-2019-10871
2019-04-05 04:29:00
openvas
openvas
Ubuntu: Security Advisory (USN-4646-1)
2020-11-26 00:00:00
Mageia: Security Advisory (MGASA-2019-0276)
2022-01-28 00:00:00
Debian: Security Advisory (DLA-1963-1)
2019-10-18 00:00:00
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS : poppler vulnerabilities (USN-4646-1)
2020-11-26 00:00:00
NewStart CGSL CORE 5.04 / MAIN 5.04 : poppler Multiple Vulnerabilities (NS-SA-2020-0074)
2020-12-09 00:00:00
Amazon Linux 2 : poppler (ALAS-2020-1481)
2020-08-26 00:00:00
amazon
amazon
Medium: poppler
2020-08-18 20:33:00
Medium: poppler
2020-07-14 02:14:00
mageia
mageia
Updated poppler packages fix security vulnerabilities
2019-09-15 15:11:55
Updated poppler packages fix a security vulnerability
2020-12-03 12:54:38
debian
debian
[SECURITY] [DLA 1963-1] poppler security update
2019-10-17 21:17:50
[SECURITY] [DLA 1963-2] poppler regression update
2019-10-18 06:44:30
[SECURITY] [DLA 1939-1] poppler security update
2019-09-30 20:29:28
oraclelinux
oraclelinux
poppler and evince security update
2020-04-06 00:00:00
poppler and evince security, bug fix, and enhancement update
2021-05-25 00:00:00
poppler security update
2019-09-12 00:00:00
redhat
redhat
(RHSA-2020:1074) Moderate: poppler and evince security update
2020-03-31 09:15:25
(RHSA-2021:1881) Moderate: poppler and evince security, bug fix, and enhancement update
2021-05-18 06:18:48
(RHSA-2019:2713) Moderate: poppler security update
2019-09-10 15:32:22
centos
centos
evince, poppler security update
2020-04-08 17:56:37
prion
prion
Heap overflow
2019-07-04 20:15:00
Heap overflow
2019-04-05 04:29:00
Design/Logic Flaw
2020-12-03 17:15:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1953
2021-07-02 17:59:22
ubuntucve
ubuntucve
CVE-2018-21009
2019-09-05 00:00:00
CVE-2019-13283
2019-07-04 00:00:00
CVE-2019-10871
2019-04-05 00:00:00
debiancve
debiancve
CVE-2019-13283
2019-07-04 20:15:00
CVE-2019-10871
2019-04-05 04:29:00
CVE-2018-21009
2019-09-05 04:15:00
redhatcve
redhatcve
CVE-2018-21009
2019-09-20 05:21:27
CVE-2019-10871
2019-10-12 03:03:15
CVE-2020-27778
2020-11-23 16:19:59
cve
cve
CVE-2019-13283
2019-07-04 20:15:00
CVE-2019-10871
2019-04-05 04:29:00
CVE-2020-27778
2020-12-03 17:15:00
ubuntu
ubuntu
poppler regression
2020-11-26 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-04-05 19:00:06
Denial Of Service (DoS)
2019-09-09 04:42:18
Integer Overflows
2020-04-01 00:38:38
cnvd
cnvd
Poppler integer overflow vulnerability
2019-07-23 00:00:00
almalinux
almalinux
Moderate: poppler and evince security, bug fix, and enhancement update
2021-05-18 06:18:48
alpinelinux
alpinelinux
CVE-2020-27778
2020-12-03 17:15:00
CVE-2019-9959
2019-07-22 15:15:00
fedora
fedora
[SECURITY] Fedora 30 Update: poppler-0.73.0-14.fc30
2019-08-13 01:02:24
[SECURITY] Fedora 29 Update: poppler-0.67.0-22.fc29
2019-08-13 01:59:39
[SECURITY] Fedora 29 Update: poppler-0.67.0-21.fc29
2019-06-22 02:56:34
rocky
rocky
poppler and evince security, bug fix, and enhancement update
2021-05-18 06:18:48
suse
suse
Security update for poppler (important)
2021-12-01 00:00:00
kitploit
kitploit
Manul - A Coverage-Guided Parallel Fuzzer For Open-Source And Blackbox Binaries On Windows, Linux And MacOS
2020-02-16 12:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

80.7%

JSON
Related for USN-4646-1
osv13openvas35nessus56amazon2mageia2debian6oraclelinux3redhat3centos1prion5rosalinux1ubuntucve5debiancve5redhatcve4cve5ubuntu1veracode4cnvd1almalinux1alpinelinux2fedora7rocky1suse1kitploit1