CVE-2019-10872

Опубликовано: 05 апр. 2019

Источник: ubuntu

Приоритет: low

CVSS2: 6.8

CVSS3: 8.8

Описание

An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function Splash::blitTransparent at splash/Splash.cc.

Релиз	Статус	Примечание
bionic	released	0.62.0-2ubuntu2.9
cosmic	released	0.68.0-0ubuntu1.7
devel	released	0.76.1-0ubuntu4
disco	released	0.74.0-0ubuntu1.2
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was needs-triage]
esm-infra/bionic	released	0.62.0-2ubuntu2.9
esm-infra/xenial	released	0.41.0-0ubuntu1.14
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was needs-triage

Показывать по

Ссылки на источники

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

CVE-2019-10872

CVSS3: 5.1

redhat

почти 7 лет назад

An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function Splash::blitTransparent at splash/Splash.cc.

CVE-2019-10872

CVSS3: 8.8

nvd

почти 7 лет назад

An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function Splash::blitTransparent at splash/Splash.cc.

CVE-2019-10872

CVSS3: 8.8

debian

почти 7 лет назад

An issue was discovered in Poppler 0.74.0. There is a heap-based buffe ...

GHSA-vjwx-3hf8-wp7w

CVSS3: 8.8

github

больше 3 лет назад

An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function Splash::blitTransparent at splash/Splash.cc.

BDU:2021-01304

CVSS3: 8.8

fstec

почти 7 лет назад

Уязвимость функции Splash::blitTransparent библиотеки для рендеринга PDF-файлов Poppler, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании

6.8 Medium

CVSS2

8.8 High

CVSS3

CVE-2019-10872

Описание

Пакет poppler

Ссылки на источники

Связанные уязвимости