CVE-2018-19149

Опубликовано: 10 нояб. 2018

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 4.3

CVSS3: 6.5

Описание

Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment.

Релиз	Статус	Примечание
bionic	released	0.62.0-2ubuntu2.3
cosmic	released	0.68.0-0ubuntu1.1
devel	not-affected
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [0.24.5-2ubuntu4.13]]
esm-infra/bionic	released	0.62.0-2ubuntu2.3
esm-infra/xenial	released	0.41.0-0ubuntu1.9
precise/esm	DNE
trusty	released	0.24.5-2ubuntu4.13
trusty/esm	DNE	trusty was released [0.24.5-2ubuntu4.13]
upstream	needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 49%

0.00261

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2018-19149

CVSS3: 3.3

redhat

почти 7 лет назад

Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment.

CVE-2018-19149

CVSS3: 6.5

nvd

почти 7 лет назад

Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment.

CVE-2018-19149

CVSS3: 6.5

debian

почти 7 лет назад

Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attac ...

GHSA-8334-q57q-jpp2

CVSS3: 6.5

github

больше 3 лет назад

Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment.

ELSA-2019-2022

oracle-oval

около 6 лет назад

ELSA-2019-2022: poppler security, bug fix, and enhancement update (MODERATE)

EPSS

Процентиль: 49%

0.00261

Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2018-19149

Описание

Пакет poppler

Ссылки на источники

Связанные уязвимости