Описание
NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the adbe.pkcs7.sha1 signatures on documents, resulting in potential signature forgeries.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 25.03.0-4build1 |
| esm-infra/bionic | released | 0.62.0-2ubuntu2.14+esm6 |
| esm-infra/focal | not-affected | 0.86.1-0ubuntu1.7 |
| esm-infra/xenial | not-affected | code not present |
| focal | released | 0.86.1-0ubuntu1.7 |
| jammy | released | 22.02.0-2ubuntu0.8 |
| noble | released | 24.02.0-1ubuntu9.4 |
| oracular | released | 24.08.0-1ubuntu0.3 |
| plucky | released | 25.03.0-3ubuntu1 |
| upstream | released | 25.03.0-4 |
Показывать по
4.3 Medium
CVSS3
Связанные уязвимости
NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the adbe.pkcs7.sha1 signatures on documents, resulting in potential signature forgeries.
NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the adbe.pkcs7.sha1 signatures on documents, resulting in potential signature forgeries.
NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the ...
NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the adbe.pkcs7.sha1 signatures on documents, resulting in potential signature forgeries.
4.3 Medium
CVSS3