Oval Definition:	oval:com.ubuntu.disco:def:201999590000000
Revision Date: 2019-07-22 Version: 1 Title: CVE-2019-9959 on Ubuntu 19.04 (disco) - low. Description: The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-9959 Platform(s): Ubuntu 19.04 Product(s): Definition Synopsis Ubuntu 19.04 (disco) is installed. AND Package Information emscripten: while related to the CVE in some way, a decision has been made to ignore this issue. OR poppler package in disco is affected and may need fixing. OR texlive-bin package in disco is affected and may need fixing.
BACK