CVE-2019-9587
Published: 6 March 2019
There is a stack consumption issue in md5Round1() located in Decrypt.cc in Xpdf 4.01. It can be triggered by sending a crafted pdf file to (for example) the pdfimages binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. This is related to Catalog::countPageTree.
Notes
Author | Note |
---|---|
jdstrand | xpdf in koffice is 2.0 |
alexmurray | according to upstream this and CVE-2019-9588 might be one and the same issue |
mdeslaur | can't reproduce with poppler, no indication it is affected as of 2022-01-05, xpdf commit not available. |
ebarretto | since 0.5.12-1 libextractor does not use xpdf anymore. xpdf in Debian uses poppler, which is not affected or fixed |
Priority
Status
Package | Release | Status |
---|---|---|
ipe Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(code not present)
|
cosmic |
Ignored
(end of life)
|
|
disco |
Not vulnerable
(code not present)
|
|
eoan |
Not vulnerable
(code not present)
|
|
focal |
Not vulnerable
(code not present)
|
|
groovy |
Not vulnerable
(code not present)
|
|
hirsute |
Not vulnerable
(code not present)
|
|
impish |
Not vulnerable
(code not present)
|
|
jammy |
Not vulnerable
(code not present)
|
|
kinetic |
Not vulnerable
(code not present)
|
|
lunar |
Not vulnerable
(code not present)
|
|
mantic |
Not vulnerable
(code not present)
|
|
trusty |
Does not exist
(trusty was needs-triage)
|
|
upstream |
Needs triage
|
|
xenial |
Not vulnerable
(code not present)
|
|
libextractor Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(code not present)
|
cosmic |
Ignored
(end of life)
|
|
disco |
Not vulnerable
(code not present)
|
|
eoan |
Not vulnerable
(code not present)
|
|
focal |
Not vulnerable
(code not present)
|
|
groovy |
Not vulnerable
(code not present)
|
|
hirsute |
Not vulnerable
(code not present)
|
|
impish |
Not vulnerable
(code not present)
|
|
jammy |
Not vulnerable
(code not present)
|
|
kinetic |
Not vulnerable
(code not present)
|
|
lunar |
Not vulnerable
(code not present)
|
|
mantic |
Not vulnerable
(code not present)
|
|
trusty |
Not vulnerable
(code not present)
|
|
upstream |
Needs triage
|
|
xenial |
Not vulnerable
(code not present)
|
|
poppler Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(0.62.0-2ubuntu2.8)
|
cosmic |
Not vulnerable
(0.68.0-0ubuntu1.6)
|
|
disco |
Not vulnerable
(0.74.0-0ubuntu1.1)
|
|
eoan |
Not vulnerable
(0.76.1-0ubuntu3)
|
|
focal |
Not vulnerable
(0.76.1-0ubuntu3)
|
|
groovy |
Not vulnerable
(0.76.1-0ubuntu3)
|
|
hirsute |
Not vulnerable
(0.76.1-0ubuntu3)
|
|
impish |
Not vulnerable
(0.76.1-0ubuntu3)
|
|
jammy |
Not vulnerable
(0.76.1-0ubuntu3)
|
|
kinetic |
Not vulnerable
(0.76.1-0ubuntu3)
|
|
lunar |
Not vulnerable
(0.76.1-0ubuntu3)
|
|
mantic |
Not vulnerable
(0.76.1-0ubuntu3)
|
|
trusty |
Does not exist
(trusty was needs-triage)
|
|
upstream |
Needs triage
|
|
xenial |
Not vulnerable
(0.41.0-0ubuntu1.13)
|
|
texlive-bin Launchpad, Ubuntu, Debian |
bionic |
Deferred
|
cosmic |
Ignored
(end of life)
|
|
disco |
Ignored
(end of life)
|
|
eoan |
Ignored
(end of life)
|
|
focal |
Deferred
|
|
groovy |
Ignored
(end of life)
|
|
hirsute |
Ignored
(end of life)
|
|
impish |
Ignored
(end of life)
|
|
jammy |
Deferred
|
|
kinetic |
Ignored
(end of life, was deferred)
|
|
lunar |
Ignored
(end of life, was deferred)
|
|
mantic |
Deferred
|
|
trusty |
Does not exist
(trusty was needs-triage)
|
|
upstream |
Needs triage
|
|
xenial |
Deferred
|
|
Binaries built from this source package are in Universe and so are supported by the community. | ||
utopia-documents Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
cosmic |
Does not exist
|
|
disco |
Does not exist
|
|
eoan |
Does not exist
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Does not exist
|
|
impish |
Does not exist
|
|
jammy |
Does not exist
|
|
kinetic |
Does not exist
|
|
lunar |
Does not exist
|
|
mantic |
Does not exist
|
|
trusty |
Does not exist
|
|
upstream |
Needs triage
|
|
xenial |
Does not exist
|
|
xpdf Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(code not present)
|
cosmic |
Ignored
(end of life)
|
|
disco |
Ignored
(end of life)
|
|
eoan |
Ignored
(end of life)
|
|
focal |
Does not exist
|
|
groovy |
Does not exist
|
|
hirsute |
Ignored
(end of life)
|
|
impish |
Ignored
(end of life)
|
|
jammy |
Not vulnerable
(code not present)
|
|
kinetic |
Not vulnerable
(code not present)
|
|
lunar |
Not vulnerable
(code not present)
|
|
mantic |
Not vulnerable
(code not present)
|
|
trusty |
Does not exist
(trusty was needs-triage)
|
|
upstream |
Needs triage
|
|
xenial |
Not vulnerable
(code not present)
|
Severity score breakdown
Parameter | Value |
---|---|
Base score | 7.8 |
Attack vector | Local |
Attack complexity | Low |
Privileges required | None |
User interaction | Required |
Scope | Unchanged |
Confidentiality | High |
Integrity impact | High |
Availability impact | High |
Vector | CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |