Oval Definition:oval:com.ubuntu.bionic:def:2018143200000000
Revision Date:2018-09-17Version:1
Title:CVE-2018-14320 on Ubuntu 18.04 LTS (bionic) - medium.
Description:This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of PoDoFo. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within PdfEncoding::ParseToUnicode. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-5673.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-14320
Platform(s):Ubuntu 18.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 18.04 LTS (bionic) is installed.
  • AND libpodofo package in bionic is affected and may need fixing.
  • BACK