CVE-2018-10768
MEDIUMpoppler < 0.41.0 - Denial of Service via AnnotPath getCoordsLength NULL Pointer Dereference
Title source: llmDescription
There is a NULL pointer dereference in the AnnotPath::getCoordsLength function in Annot.h in an Ubuntu package for Poppler 0.24.5. A crafted input will lead to a remote denial of service attack. Later Ubuntu packages such as for Poppler 0.41.0 are not affected.
References (6)
Core 6
Core References
Exploit, Issue Tracking, Patch, Vendor Advisory x_refsource_misc
https://bugs.freedesktop.org/show_bug.cgi?id=106408
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2018/10/msg00024.html
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:3505
Third Party Advisory vendor-advisory
x_refsource_ubuntu
https://usn.ubuntu.com/3647-1/
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:3140
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHBA-2019:0327
Scores
CVSS v3
6.5
EPSS
0.0185
EPSS Percentile
83.3%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Details
CWE
CWE-476
Status
published
Products (7)
canonical/ubuntu_linux
14.04
debian/debian_linux
8.0
freedesktop/poppler
< 0.41.0
redhat/ansible_tower
3.3
redhat/enterprise_linux_desktop
7.0
redhat/enterprise_linux_server
7.0
redhat/enterprise_linux_workstation
7.0
Published
May 06, 2018
Tracked Since
Feb 18, 2026