Lucene search
Alpine Linux Development TeamALPINE:CVE-2022-43295HistoryNov 14, 2022 - 9:15 p.m.
CVE-2022-43295
2022-11-1421:15:21
Alpine Linux Development Team
security.alpinelinux.org
11
xpdf v4.04
stack overflow
filestream::copy()
xpdf/stream.cc:795
unix
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
6
Confidence
High
EPSS
0.001
Percentile
19.8%
XPDF v4.04 was discovered to contain a stack overflow via the function FileStream::copy() at xpdf/Stream.cc:795.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-community | noarch | xpdf | < 4.05-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | xpdf | < 4.05-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | xpdf | < 4.05-r0 | UNKNOWN |
Related
veracode
veracode
Stack Overflow
2024-04-10 20:03:02
nvd
nvd
CVE-2022-43295
2022-11-14 21:15:21
debiancve
debiancve
CVE-2022-43295
2022-11-14 21:15:21
cvelist
cvelist
CVE-2022-43295
2022-11-14 00:00:00
prion
prion
Stack overflow
2022-11-14 21:15:00
ubuntucve
ubuntucve
CVE-2022-43295
2022-11-14 00:00:00
cve
cve
CVE-2022-43295
2022-11-14 21:15:21
mageia
mageia
Updated xpdf packages fix security vulnerabilities
2024-02-10 22:02:27
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0035)
2024-02-12 00:00:00
nessus
nessus
GLSA-202409-25 : Xpdf: Multiple Vulnerabilities
2024-09-25 00:00:00
gentoo
gentoo
Xpdf: Multiple Vulnerabilities
2024-09-25 00:00:00
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
6
Confidence
High
EPSS
0.001
Percentile
19.8%
Related for ALPINE:CVE-2022-43295