Oval Definition:oval:com.ubuntu.bionic:def:2019129570000000
Revision Date:2019-06-25Version:1
Title:CVE-2019-12957 on Ubuntu 18.04 LTS (bionic) - medium.
Description:In Xpdf 4.01.01, a buffer over-read could be triggered in FoFiType1C::convertToType1 in fofi/FoFiType1C.cc when the index number is larger than the charset array bounds. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It allows an attacker to use a crafted pdf file to cause Denial of Service or an information leak, or possibly have unspecified other impact.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2019-12957
Platform(s):Ubuntu 18.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 18.04 LTS (bionic) is installed.
  • AND Package Information
  • poppler package in bionic, is related to the CVE in some way and has been fixed (note: '0.62.0-2ubuntu2.8').
  • OR xpdf package in bionic is affected and may need fixing.
  • BACK