Oval Definition:
oval:com.ubuntu.disco:def:2018184560000000
Revision Date
:
2018-10-18
Version
:
1
Title
:
CVE-2018-18456 on Ubuntu 19.04 (disco) - medium.
Description
:
The function Object::isName() in Object.h (called from Gfx::opSetFillColorN) in Xpdf 4.00 allows remote attackers to cause a denial of service (stack-based buffer over-read) via a crafted pdf file, as demonstrated by pdftoppm.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2018-18456
Platform(s)
:
Ubuntu 19.04
Product(s)
:
Definition Synopsis
Ubuntu 19.04 (disco) is installed.
AND
Package Information
ipe package in disco is affected and may need fixing.
OR
libextractor package in disco is affected and may need fixing.
OR
xpdf package in disco is affected and needs fixing.
BACK