Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2019-13289

Опубликовано: 04 июл. 2019
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.8
CVSS3: 7.8

Описание

In Xpdf 4.01.01, there is a use-after-free vulnerability in the function JBIG2Stream::close() located at JBIG2Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool.

РелизСтатусПримечание
bionic

not-affected

code not present
cosmic

ignored

end of life
devel

not-affected

code not present
disco

not-affected

code not present
eoan

not-affected

code not present
esm-apps/bionic

not-affected

code not present
esm-apps/focal

not-affected

code not present
esm-apps/jammy

not-affected

code not present
esm-apps/xenial

not-affected

code not present
esm-infra-legacy/trusty

DNE

Показывать по

РелизСтатусПримечание
bionic

not-affected

code not present
cosmic

ignored

end of life
devel

not-affected

code not present
disco

not-affected

code not present
eoan

not-affected

code not present
esm-apps/bionic

not-affected

code not present
esm-apps/focal

not-affected

code not present
esm-apps/jammy

not-affected

code not present
esm-apps/xenial

not-affected

code not present
esm-infra-legacy/trusty

not-affected

code not present

Показывать по

РелизСтатусПримечание
bionic

not-affected

0.62.0-2ubuntu2.9
cosmic

not-affected

0.68.0-0ubuntu1.7
devel

not-affected

0.76.1-0ubuntu4
disco

not-affected

0.74.0-0ubuntu1.2
eoan

not-affected

0.76.1-0ubuntu4
esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

0.62.0-2ubuntu2.9
esm-infra/focal

not-affected

0.76.1-0ubuntu4
esm-infra/xenial

not-affected

0.41.0-0ubuntu1.14
focal

not-affected

0.76.1-0ubuntu4

Показывать по

РелизСтатусПримечание
bionic

not-affected

code not present
cosmic

ignored

end of life
devel

not-affected

code not present
disco

ignored

end of life
eoan

ignored

end of life
esm-apps/bionic

not-affected

code not present
esm-apps/jammy

not-affected

code not present
esm-apps/xenial

not-affected

code not present
esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 52%
0.00288
Низкий

6.8 Medium

CVSS2

7.8 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2019-13289

CVSS3: 7.8
nvd
больше 6 лет назад

In Xpdf 4.01.01, there is a use-after-free vulnerability in the function JBIG2Stream::close() located at JBIG2Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool.

debian логотип

CVE-2019-13289

CVSS3: 7.8
debian
больше 6 лет назад

In Xpdf 4.01.01, there is a use-after-free vulnerability in the functi ...

github логотип

GHSA-9gpr-p7h6-pgxm

CVSS3: 7.8
github
больше 3 лет назад

In Xpdf 4.01.01, there is a use-after-free vulnerability in the function JBIG2Stream::close() located at JBIG2Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool.

EPSS

Процентиль: 52%
0.00288
Низкий

6.8 Medium

CVSS2

7.8 High

CVSS3