Oval Definition:	oval:com.ubuntu.xenial:def:20199587000
Revision Date: 2019-03-06 Version: 1 Title: CVE-2019-9587 on Ubuntu 16.04 LTS (xenial) - low. Description: There is a stack consumption issue in md5Round1() located in Decrypt.cc in Xpdf 4.01. It can be triggered by sending a crafted pdf file to (for example) the pdfimages binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. This is related to Catalog::countPageTree. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-9587 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information The vulnerability of the 'ipe' package in xenial is not known (status: 'needs-triage'). It is pending evaluation. OR The vulnerability of the 'libextractor' package in xenial is not known (status: 'needs-triage'). It is pending evaluation. OR The vulnerability of the 'poppler' package in xenial is not known (status: 'needs-triage'). It is pending evaluation. OR The vulnerability of the 'texlive-bin' package in xenial is not known (status: 'needs-triage'). It is pending evaluation. OR The vulnerability of the 'xpdf' package in xenial is not known (status: 'needs-triage'). It is pending evaluation.
BACK