vulnerability

SUSE: CVE-2017-1000456: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Jan 2, 2018	Jun 14, 2018	Aug 12, 2021

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Jan 2, 2018

Added

Jun 14, 2018

Modified

Aug 12, 2021

Description

freedesktop.org libpoppler 0.60.1 fails to validate boundaries in TextPool::addWord, leading to overflow in subsequent calculations.

Solution(s)

suse-upgrade-libpoppler-cpp0suse-upgrade-libpoppler-develsuse-upgrade-libpoppler-glib-develsuse-upgrade-libpoppler-glib4suse-upgrade-libpoppler-glib8suse-upgrade-libpoppler-qt2suse-upgrade-libpoppler-qt3-develsuse-upgrade-libpoppler-qt4-3suse-upgrade-libpoppler-qt4-4suse-upgrade-libpoppler-qt4-develsuse-upgrade-libpoppler44suse-upgrade-libpoppler5suse-upgrade-libpoppler60suse-upgrade-poppler-toolssuse-upgrade-typelib-1_0-poppler-0_18

References

SUSE-SUSE-SU-2018:1662-1
SUSE-SUSE-SU-2018:1691-1
SUSE-SUSE-SU-2020:1626-1
DEBIAN-DSA-4097
NVD-CVE-2017-1000456
UBUNTU-USN-3517-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today