Описание
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a free of invalid data.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | |
| bionic | not-affected | |
| cosmic | not-affected | |
| dapper | DNE | |
| devel | not-affected | |
| disco | not-affected | |
| eoan | not-affected | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected] |
| esm-infra/bionic | not-affected | |
| esm-infra/focal | not-affected |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| cosmic | DNE | |
| dapper | not-affected | |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | linked to poppler |
| bionic | not-affected | linked to poppler |
| cosmic | not-affected | linked to poppler |
| dapper | not-affected | linked to poppler |
| devel | not-affected | linked to poppler |
| disco | not-affected | linked to poppler |
| eoan | not-affected | linked to poppler |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [linked to poppler]] |
| esm-infra/bionic | not-affected | linked to poppler |
| esm-infra/focal | not-affected | linked to poppler |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| cosmic | DNE | |
| dapper | ignored | end of life |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | uses system pdflatex |
| bionic | not-affected | uses system pdflatex |
| cosmic | not-affected | uses system pdflatex |
| dapper | ignored | end of life |
| devel | not-affected | uses system pdflatex |
| disco | not-affected | uses system pdflatex |
| eoan | not-affected | uses system pdflatex |
| esm-apps/bionic | not-affected | uses system pdflatex |
| esm-apps/focal | not-affected | uses system pdflatex |
| esm-apps/jammy | not-affected | uses system pdflatex |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| cosmic | DNE | |
| dapper | not-affected | linked to poppler |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| cosmic | DNE | |
| dapper | ignored | end of life |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | does not use xpdf anymore |
| cosmic | ignored | end of life |
| dapper | ignored | end of life |
| devel | not-affected | does not use xpdf anymore |
| disco | ignored | end of life |
| eoan | ignored | end of life |
| esm-apps/bionic | not-affected | does not use xpdf anymore |
| esm-apps/focal | not-affected | does not use xpdf anymore |
| esm-apps/jammy | not-affected | does not use xpdf anymore |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| cosmic | DNE | |
| dapper | ignored | end of life |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| cosmic | DNE | |
| dapper | ignored | end of life |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 0.10.5-1ubuntu2 |
| bionic | released | 0.10.5-1ubuntu2 |
| cosmic | released | 0.10.5-1ubuntu2 |
| dapper | released | 0.5.1-0ubuntu7.5 |
| devel | released | 0.10.5-1ubuntu2 |
| disco | released | 0.10.5-1ubuntu2 |
| eoan | released | 0.10.5-1ubuntu2 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [0.10.5-1ubuntu2]] |
| esm-infra/bionic | not-affected | 0.10.5-1ubuntu2 |
| esm-infra/focal | not-affected | 0.10.5-1ubuntu2 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| cosmic | DNE | |
| dapper | not-affected | linked to poppler |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | linked to poppler |
| bionic | not-affected | linked to poppler |
| cosmic | not-affected | linked to poppler |
| dapper | DNE | |
| devel | not-affected | linked to poppler |
| disco | not-affected | linked to poppler |
| eoan | not-affected | linked to poppler |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [linked to poppler]] |
| esm-infra/bionic | not-affected | linked to poppler |
| esm-infra/focal | not-affected | linked to poppler |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 3.02-2 |
| bionic | not-affected | 3.02-2 |
| cosmic | not-affected | 3.02-2 |
| dapper | ignored | end of life |
| devel | not-affected | |
| disco | not-affected | 3.02-2 |
| eoan | not-affected | 3.02-2 |
| esm-apps/bionic | not-affected | 3.02-2 |
| esm-apps/jammy | not-affected | |
| esm-apps/xenial | not-affected | 3.02-2 |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a free of invalid data.
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a free of invalid data.
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, ...
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a free of invalid data.
Уязвимости операционной системы CentOS, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS
6.8 Medium
CVSS2