| Revision Date: | 2019-04-17 | Version: | 1 | | Title: | CVE-2019-0228 on Ubuntu 18.04 LTS (bionic) - medium. | | Description: | Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XFDF.
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2019-0228
| | Platform(s): | Ubuntu 18.04 LTS
| Product(s): | | | Definition Synopsis | | Ubuntu 18.04 LTS (bionic) is installed. AND Package Information
NOT libfontbox-java package in bionic, while related to the CVE in some way, is not affected (note: 'introduced in 2.0.14').
OR NOT libjempbox-java package in bionic, while related to the CVE in some way, is not affected (note: 'introduced in 2.0.14').
OR NOT libpdfbox-java package in bionic, while related to the CVE in some way, is not affected (note: 'introduced in 2.0.14').
OR NOT libfontbox2-java package in bionic, while related to the CVE in some way, is not affected (note: 'introduced in 2.0.14').
OR NOT libpdfbox2-java package in bionic, while related to the CVE in some way, is not affected (note: 'introduced in 2.0.14').
|
|