Описание
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 0.62.0-2ubuntu2.4 |
| cosmic | released | 0.68.0-0ubuntu1.2 |
| devel | released | 0.71.0-2ubuntu3 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [0.24.5-2ubuntu4.13]] |
| esm-infra/bionic | released | 0.62.0-2ubuntu2.4 |
| esm-infra/xenial | released | 0.41.0-0ubuntu1.9 |
| precise/esm | DNE | |
| trusty | released | 0.24.5-2ubuntu4.13 |
| trusty/esm | DNE | trusty was released [0.24.5-2ubuntu4.13] |
| upstream | needs-triage |
Показывать по
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may caus ...
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.
Уязвимость функции Parser::getObj() библиотеки для рендеринга PDF-файлов Poppler, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3