libpoppler.so is vulnerable to denial of service (DoS) attacks. A malicious user can pass a pdf file to the AnnotPath::getCoordsLength function in Annot.cc to cause a null pointer dereference that can crash the application.

References

bugs.freedesktop.org/show_bug.cgi?id=106408

cgit.freedesktop.org/poppler/poppler/commit/?id=942adfc25e7a00ac3cf032ced2d8949e99099f70

nessus 11

cve 1

ubuntucve 1

openvas 7

nvd 1

cvelist 1

prion 1

f5 1

redhatcve 1

osv 2

debiancve 1

ubuntu 1

mageia 1

amazon 2

debian 1

oraclelinux 1

redhat 2

centos 1

nessus

EulerOS 2.0 SP3 : poppler (EulerOS-SA-2018-1226)

2018-08-10 00:00:00

EulerOS 2.0 SP2 : poppler (EulerOS-SA-2018-1219)

2018-07-03 00:00:00

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : poppler vulnerabilities (USN-3647-1)

2018-05-16 00:00:00

cve

CVE-2018-10768

2018-05-06 23:29:00

ubuntucve

CVE-2018-10768

2018-05-06 00:00:00

openvas

Huawei EulerOS: Security Advisory for poppler (EulerOS-SA-2018-1219)

2020-01-23 00:00:00

Huawei EulerOS: Security Advisory for poppler (EulerOS-SA-2018-1226)

2020-01-23 00:00:00

Mageia: Security Advisory (MGASA-2018-0290)

2022-01-28 00:00:00

nvd

CVE-2018-10768

2018-05-06 23:29:00

cvelist

CVE-2018-10768

2018-05-06 23:00:00

prion

Null pointer dereference

2018-05-06 23:29:00

K22854723 : Poppler vulnerability CVE-2018-10768

2022-08-25 00:00:00

redhatcve

CVE-2018-10768

2018-05-09 04:19:00

osv

CVE-2018-10768

2018-05-06 23:29:00

poppler - security update

2018-10-31 00:00:00

debiancve

CVE-2018-10768

2018-05-06 23:29:00

ubuntu

poppler vulnerabilities

2018-05-15 00:00:00

mageia

Updated poppler packages fix security vulnerability

2018-06-20 02:42:28

amazon

Low: poppler

2018-12-06 00:26:00

Low: poppler

2019-05-29 19:06:00

debian

[SECURITY] [DLA 1562-1] poppler security update

2018-10-31 21:38:15

oraclelinux

GNOME security, bug fix, and enhancement update

2018-11-05 00:00:00

redhat

(RHSA-2018:3140) Moderate: GNOME security, bug fix, and enhancement update

2018-10-30 04:22:45

(RHSA-2018:3505) Critical: Red Hat Ansible Tower 3.3.1-2 Release - Container Image

2018-11-06 15:39:03

centos

PackageKit, accountsservice, adwaita, appstream, at, atk, baobab, bolt, brasero, cairo, cheese, clutter, compat, control, dconf, devhelp, ekiga, empathy, eog, evince, evolution, file, flatpak, folks, fontconfig, freetype, fribidi, fwupd, fwupdate, gcr, gdk, gdm, gedit, geoclue2, geocode, gjs, glade, glib, glib2, glibmm24, gnome, gnote, gobject, gom, google, grilo, gsettings, gspell, gssdp, gstreamer1, gtk, gtk3, gtksourceview3, gucharmap, gupnp, gvfs, harfbuzz, json, libappstream, libchamplain, libcroco, libgdata, libgee, libgepub, libgexiv2, libgnomekbd, libgovirt, libgtop2, libgweather, libgxps, libical, libmediaart, libosinfo, libpeas, librsvg2, libsecret, libsoup, libwayland, libwnck3, mozjs52, mutter, nautilus, openchange, osinfo, pango, poppler, python2, rest, rhythmbox, seahorse, shotwell, sushi, totem, upower, vala, valadoc, vino, vte, vte291, wayland, webkitgtk4, xdg, yelp, zenity security update

2018-11-15 18:43:07

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.015

Percentile

87.2%

JSON

Related for VERACODE:6594