vulnerability
SUSE: CVE-2019-13287: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:P/I:N/A:N) | 07/04/2019 | 08/09/2024 | 08/09/2024 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:P/I:N/A:N)
Published
07/04/2019
Added
08/09/2024
Modified
08/09/2024
Description
In Xpdf 4.01.01, there is an out-of-bounds read vulnerability in the function SplashXPath::strokeAdjust() located at splash/SplashXPath.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure. This is related to CVE-2018-16368.
Solution(s)
suse-upgrade-libpoppler-cpp0suse-upgrade-libpoppler-develsuse-upgrade-libpoppler-glib-develsuse-upgrade-libpoppler-glib8suse-upgrade-libpoppler-qt4-4suse-upgrade-libpoppler-qt4-develsuse-upgrade-libpoppler60suse-upgrade-libpoppler73suse-upgrade-libpoppler73-32bitsuse-upgrade-poppler-toolssuse-upgrade-typelib-1_0-poppler-0_18
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.