CVE-2018-8036

Опубликовано: 03 июл. 2018

Источник: debian

EPSS Низкий

Описание

In Apache PDFBox 1.8.0 to 1.8.14 and 2.0.0RC1 to 2.0.10, a carefully crafted (or fuzzed) file can trigger an infinite loop which leads to an out of memory exception in Apache PDFBox's AFMParser.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libpdfbox-java	fixed	1:1.8.15-1		package
libpdfbox-java	no-dsa		stretch	package
libpdfbox-java	no-dsa		jessie	package
libpdfbox2-java	fixed	2.0.11-1		package

Примечания

https://www.openwall.com/lists/oss-security/2018/06/29/2

EPSS

Процентиль: 67%

0.00547

Низкий

Связанные уязвимости

CVE-2018-8036

CVSS3: 6.5

ubuntu

больше 7 лет назад

In Apache PDFBox 1.8.0 to 1.8.14 and 2.0.0RC1 to 2.0.10, a carefully crafted (or fuzzed) file can trigger an infinite loop which leads to an out of memory exception in Apache PDFBox's AFMParser.

CVE-2018-8036

CVSS3: 6.5

redhat

больше 7 лет назад

In Apache PDFBox 1.8.0 to 1.8.14 and 2.0.0RC1 to 2.0.10, a carefully crafted (or fuzzed) file can trigger an infinite loop which leads to an out of memory exception in Apache PDFBox's AFMParser.

CVE-2018-8036

CVSS3: 6.5

nvd

больше 7 лет назад

In Apache PDFBox 1.8.0 to 1.8.14 and 2.0.0RC1 to 2.0.10, a carefully crafted (or fuzzed) file can trigger an infinite loop which leads to an out of memory exception in Apache PDFBox's AFMParser.

openSUSE-SU-2018:2645-1

suse-cvrf

больше 7 лет назад

Security update for apache-pdfbox

SUSE-SU-2018:2630-1

suse-cvrf

больше 7 лет назад

Security update for apache-pdfbox

EPSS

Процентиль: 67%

0.00547

Низкий