Lucene search
Veracode Vulnerability DatabaseVERACODE:7704HistoryNov 08, 2018 - 8:16 a.m.
Denial Of Service (DoS)
2018-11-0808:16:28
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
0.002 Low
EPSS
Percentile
54.7%
libpoppler.so is vulnerable to a denial of service (DoS) attack. The library does not validate the file name of an embedded file before using it to determine the save path, leading to a NULL pointer dereference that can crash the application.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libpoppler.so | le | 37.0.0 | |
| poppler | eq | 0.26.5__20.el7 | |
| evince | eq | 3.28.2__5.el7 | |
| evince | eq | 3.22.1__7.el7 |
Related
ubuntucve
ubuntucve
CVE-2018-19060
2018-11-07 00:00:00
osv
osv
CVE-2018-19060
2018-11-07 16:29:01
prion
prion
Null pointer dereference
2018-11-07 16:29:00
cvelist
cvelist
CVE-2018-19060
2018-11-07 16:00:00
cve
cve
CVE-2018-19060
2018-11-07 16:29:01
redhatcve
redhatcve
CVE-2018-19060
2018-11-13 16:21:54
debiancve
debiancve
CVE-2018-19060
2018-11-07 16:29:01
nvd
nvd
CVE-2018-19060
2018-11-07 16:29:01
nessus
nessus
Fedora 28 : poppler (2018-54ed26a423)
2019-01-03 00:00:00
Fedora 29 : poppler (2018-e805688895)
2019-01-03 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: poppler-0.67.0-6.fc29
2018-11-18 04:00:20
[SECURITY] Fedora 29 Update: mingw-poppler-0.67.0-2.fc29
2018-12-30 03:22:07
[SECURITY] Fedora 28 Update: poppler-0.62.0-10.fc28
2018-11-21 03:14:22
openvas
openvas
Mageia: Security Advisory (MGASA-2018-0465)
2022-01-28 00:00:00
Ubuntu: Security Advisory (USN-3837-1)
2018-12-05 00:00:00
Huawei EulerOS: Security Advisory for poppler (EulerOS-SA-2021-1271)
2021-02-05 00:00:00
mageia
mageia
Updated poppler packages fix security vulnerabilities
2018-11-23 01:26:34
ubuntu
ubuntu
poppler vulnerabilities
2018-12-04 00:00:00
amazon
amazon
Medium: poppler
2019-08-23 17:01:00
Medium: poppler
2019-10-21 18:01:00
redhat
redhat
(RHSA-2019:2022) Moderate: poppler security, bug fix, and enhancement update
2019-08-06 07:51:02
oraclelinux
oraclelinux
poppler security, bug fix, and enhancement update
2019-08-13 00:00:00
centos
centos
evince, okular, poppler security update
2019-08-30 02:44:38
suse
suse
Security update for poppler (important)
2021-12-01 00:00:00