Oval Definition:	oval:com.ubuntu.cosmic:def:200936080000000
Revision Date: 2009-10-21 Version: 1 Title: CVE-2009-3608 on Ubuntu 18.10 (cosmic) - medium. Description: Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow. Family: unix Class: vulnerability Status: Reference(s): CVE-2009-3608 Platform(s): Ubuntu 18.10 Product(s): Definition Synopsis Ubuntu 18.10 (cosmic) is installed. AND Package Information ipe: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life'). OR libextractor: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life'). OR poppler package in cosmic was vulnerable but has been fixed (note: '0.12.2-2.1ubuntu1'). OR xpdf package in cosmic, is related to the CVE in some way and has been fixed (note: '3.02-2').
BACK