CVE-2018-7174

Опубликовано: 15 фев. 2018

Источник: debian

EPSS Низкий

Описание

An issue was discovered in xpdf 4.00. An infinite loop in XRef::Xref allows an attacker to cause denial of service because loop detection exists only for tables, not streams.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
xpdf	unfixed			package

Примечания

https://forum.xpdfreader.com/viewtopic.php?f=3&t=605
src:xpdf switched to use system poppler libary in 3.02-3

EPSS

Процентиль: 39%

0.00177

Низкий

Связанные уязвимости

CVE-2018-7174

CVSS3: 5.5

ubuntu

почти 8 лет назад

An issue was discovered in xpdf 4.00. An infinite loop in XRef::Xref allows an attacker to cause denial of service because loop detection exists only for tables, not streams.

CVE-2018-7174

CVSS3: 5.5

nvd

почти 8 лет назад

An issue was discovered in xpdf 4.00. An infinite loop in XRef::Xref allows an attacker to cause denial of service because loop detection exists only for tables, not streams.

GHSA-3mwf-8hp6-9vxf

CVSS3: 5.5

github

больше 3 лет назад

An issue was discovered in xpdf 4.00. An infinite loop in XRef::Xref allows an attacker to cause denial of service because loop detection exists only for tables, not streams.

EPSS

Процентиль: 39%

0.00177

Низкий