Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2022-37051

Опубликовано: 28 июл. 2022
Источник: redhat
CVSS3: 6.5

Описание

An issue was discovered in Poppler 22.07.0. There is a reachable abort which leads to denial of service because the main function in pdfunite.cc lacks a stream check before saving an embedded file.

An issue was discovered in Poppler, where a reachable abort which leads to denial of service because the main function in pdfunite.cc lacks a stream check before saving an embedded file.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6popplerOut of support scope
Red Hat Enterprise Linux 7compat-poppler022Out of support scope
Red Hat Enterprise Linux 7popplerOut of support scope
Red Hat Enterprise Linux 8cups-containerNot affected
Red Hat Enterprise Linux 8gimp-flatpak-containerAffected
Red Hat Enterprise Linux 8gimp:flatpak/popplerAffected
Red Hat Enterprise Linux 8popplerAffected
Red Hat Enterprise Linux 9cups-containerNot affected
Red Hat Enterprise Linux 9inkscape:flatpak/popplerWill not fix
Red Hat Enterprise Linux 9libreoffice-flatpak-containerWill not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-400
https://bugzilla.redhat.com/show_bug.cgi?id=2234528poppler: abort in main() in pdfunite.cc

6.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2022-37051

CVSS3: 6.5
ubuntu
больше 2 лет назад

An issue was discovered in Poppler 22.07.0. There is a reachable abort which leads to denial of service because the main function in pdfunite.cc lacks a stream check before saving an embedded file.

nvd логотип

CVE-2022-37051

CVSS3: 6.5
nvd
больше 2 лет назад

An issue was discovered in Poppler 22.07.0. There is a reachable abort which leads to denial of service because the main function in pdfunite.cc lacks a stream check before saving an embedded file.

debian логотип

CVE-2022-37051

CVSS3: 6.5
debian
больше 2 лет назад

An issue was discovered in Poppler 22.07.0. There is a reachable abort ...

github логотип

GHSA-fh54-998j-j424

CVSS3: 6.5
github
больше 2 лет назад

An issue was discovered in Poppler 22.07.0. There is a reachable abort which leads to denial of service because the main function in pdfunite.cc lacks a stream check before saving an embedded file.

fstec логотип

BDU:2023-05859

CVSS3: 6.5
fstec
больше 2 лет назад

Уязвимость компонента pdfunite.cc библиотеки для рендеринга PDF-файлов Poppler, позволяющая нарушителю вызвать отказ в обслуживании

6.5 Medium

CVSS3