Lucene search
Alpine Linux Development TeamALPINE:CVE-2022-48545HistoryAug 22, 2023 - 7:16 p.m.
CVE-2022-48545
2023-08-2219:16:31
Alpine Linux Development Team
security.alpinelinux.org
11
infinite recursion
catalog::finddestintree
xpdf 4.02
denial of service
unix
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
5.6
Confidence
High
EPSS
0
Percentile
12.7%
An infinite recursion in Catalog::findDestInTree can cause denial of service for xpdf 4.02.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-community | noarch | xpdf | < 4.05-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | xpdf | < 4.05-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | xpdf | < 4.05-r0 | UNKNOWN |
Related
cve
cve
CVE-2022-48545
2023-08-22 19:16:31
nvd
nvd
CVE-2022-48545
2023-08-22 19:16:31
veracode
veracode
Denial Of Service (DoS)
2023-10-10 12:32:57
cvelist
cvelist
CVE-2022-48545
2023-08-22 00:00:00
prion
prion
Design/Logic Flaw
2023-08-22 19:16:00
ubuntucve
ubuntucve
CVE-2022-48545
2023-08-22 00:00:00
debiancve
debiancve
CVE-2022-48545
2023-08-22 19:16:31
nessus
nessus
SUSE SLES12 Security Update : poppler (SUSE-SU-2023:4546-1)
2023-11-25 00:00:00
SUSE SLES12 Security Update : poppler (SUSE-SU-2023:4362-1)
2023-11-04 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:4362-1)
2023-11-06 00:00:00
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
AI Score
5.6
Confidence
High
EPSS
0
Percentile
12.7%
Related for ALPINE:CVE-2022-48545