- Vulnerability/
- USN-3837-1
USN-3837-1: poppler vulnerabilities
First published: Tue Dec 04 2018(Updated: )
It was discovered that poppler incorrectly handled certain PDF files. An attacker could possibly use this issue to cause a denial of service. (CVE-2018-16646, CVE-2018-19058, CVE-2018-19059, CVE-2018-19060) It was discovered that poppler incorrectly handled certain PDF files. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. (CVE-2018-19149)
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/libpoppler79 | <0.68.0-0ubuntu1.2 | 0.68.0-0ubuntu1.2 |
| =18.10 | ||
| All of | ||
| ubuntu/poppler-utils | <0.68.0-0ubuntu1.2 | 0.68.0-0ubuntu1.2 |
| =18.10 | ||
| All of | ||
| ubuntu/libpoppler73 | <0.62.0-2ubuntu2.4 | 0.62.0-2ubuntu2.4 |
| =18.04 | ||
| All of | ||
| ubuntu/poppler-utils | <0.62.0-2ubuntu2.4 | 0.62.0-2ubuntu2.4 |
| =18.04 | ||
| All of | ||
| ubuntu/libpoppler58 | <0.41.0-0ubuntu1.9 | 0.41.0-0ubuntu1.9 |
| =16.04 | ||
| All of | ||
| ubuntu/poppler-utils | <0.41.0-0ubuntu1.9 | 0.41.0-0ubuntu1.9 |
| =16.04 | ||
| All of | ||
| ubuntu/libpoppler44 | <0.24.5-2ubuntu4.13 | 0.24.5-2ubuntu4.13 |
| =14.04 | ||
| All of | ||
| ubuntu/poppler-utils | <0.24.5-2ubuntu4.13 | 0.24.5-2ubuntu4.13 |
| =14.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2018-16646
- https://ubuntu.com/security/CVE-2018-19058
- https://ubuntu.com/security/CVE-2018-19059
- https://ubuntu.com/security/CVE-2018-19060
- https://ubuntu.com/security/CVE-2018-19149
- https://ubuntu.com/security/notices/USN-3837-2
- https://launchpad.net/ubuntu/+source/poppler/0.68.0-0ubuntu1.2
- https://launchpad.net/ubuntu/+source/poppler/0.62.0-2ubuntu2.4
- https://launchpad.net/ubuntu/+source/poppler/0.41.0-0ubuntu1.9
- https://launchpad.net/ubuntu/+source/poppler/0.24.5-2ubuntu4.13
- https://ubuntu.com/security/notices/USN-3837-1 (Advisory)
Child vulnerabilities
(Contains the following vulnerabilities)
Frequently Asked Questions
What is the vulnerability ID for this security issue with poppler?
The vulnerability ID for this security issue with poppler is CVE-2018-16646, CVE-2018-19058, CVE-2018-19059, and CVE-2018-19060.
What is the affected software for this vulnerability?
The affected software for this vulnerability includes libpoppler79, poppler-utils, libpoppler73, and libpoppler58.
What is the minimum recommended version to fix this vulnerability?
The minimum recommended version to fix this vulnerability is 0.68.0-0ubuntu1.2 for libpoppler79 and poppler-utils packages.
Where can I find more information about this vulnerability?
You can find more information about this vulnerability at the following references: [CVE-2018-16646](https://ubuntu.com/security/CVE-2018-16646), [CVE-2018-19058](https://ubuntu.com/security/CVE-2018-19058), and [CVE-2018-19059](https://ubuntu.com/security/CVE-2018-19059).
- agent/severity
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/references
- agent/title
- agent/description
- agent/event
- agent/tags
- agent/trending
- collector/usn
- source/Ubuntu
- agent/software-canonical-lookup
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/18.10
- version/ubuntu ubuntu/18.04
- version/ubuntu ubuntu/16.04
- version/ubuntu ubuntu/14.04