CVE-2018-19149

Опубликовано: 10 нояб. 2018

Источник: debian

EPSS Низкий

Описание

Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment.

Пакет	Статус	Версия исправления	Релиз	Тип
poppler	fixed	0.71.0-2		package

https://gitlab.freedesktop.org/poppler/poppler/issues/664
https://bugzilla.redhat.com/show_bug.cgi?id=1649457#c3
https://github.com/freedesktop/poppler/commit/f162ecdea0dda5dbbdb45503c1d55d9afaa41d44 (poppler-0.70.0)

EPSS

Процентиль: 43%

0.002

Низкий

CVE-2018-19149

CVSS3: 6.5

ubuntu

больше 6 лет назад

Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment.

CVE-2018-19149

CVSS3: 3.3

redhat

больше 6 лет назад

Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment.

CVE-2018-19149

CVSS3: 6.5

nvd

больше 6 лет назад

Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment.

GHSA-8334-q57q-jpp2

CVSS3: 6.5

github

около 3 лет назад

Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment.

ELSA-2019-2022

oracle-oval

почти 6 лет назад

ELSA-2019-2022: poppler security, bug fix, and enhancement update (MODERATE)

EPSS

Процентиль: 43%

0.002

Низкий