Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-48545HistoryAug 22, 2023 - 7:16 p.m.
CVE-2022-48545
2023-08-2219:16:31
Debian Security Bug Tracker
security-tracker.debian.org
12
cve-2022-48545
catalog::finddestintree
infinite recursion
denial of service
xpdf 4.02
unix
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0
Percentile
12.7%
An infinite recursion in Catalog::findDestInTree can cause denial of service for xpdf 4.02.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | xpdf | < 3.04+git20220601-1 | xpdf_3.04+git20220601-1_all.deb |
| Debian | 11 | all | xpdf | < 3.04+git20210103-3 | xpdf_3.04+git20210103-3_all.deb |
| Debian | 999 | all | xpdf | < 3.04+git20240613-1 | xpdf_3.04+git20240613-1_all.deb |
| Debian | 13 | all | xpdf | < 3.04+git20240613-1 | xpdf_3.04+git20240613-1_all.deb |
Related
alpinelinux
alpinelinux
CVE-2022-48545
2023-08-22 19:16:31
veracode
veracode
Denial Of Service (DoS)
2023-10-10 12:32:57
cvelist
cvelist
CVE-2022-48545
2023-08-22 00:00:00
cve
cve
CVE-2022-48545
2023-08-22 19:16:31
nvd
nvd
CVE-2022-48545
2023-08-22 19:16:31
prion
prion
Design/Logic Flaw
2023-08-22 19:16:00
ubuntucve
ubuntucve
CVE-2022-48545
2023-08-22 00:00:00
nessus
nessus
SUSE SLES12 Security Update : poppler (SUSE-SU-2023:4546-1)
2023-11-25 00:00:00
SUSE SLES12 Security Update : poppler (SUSE-SU-2023:4362-1)
2023-11-04 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:4362-1)
2023-11-06 00:00:00
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0
Percentile
12.7%
Related for DEBIANCVE:CVE-2022-48545