Wind River Support Network

HomeDefectsLIN10-4738
Not to be fixed

LIN10-4738 : Security Advisory - poppler - CVE-2018-16646

Created: Sep 16, 2018    Updated: Nov 2, 2018
Resolved Date: Oct 24, 2018
Found In Version: 10.17.41.1
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Userspace

Description

In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.

https://nvd.nist.gov/vuln/detail/CVE-2018-16646

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube