Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2010-0206

Published: 30 October 2019

xpdf allows remote attackers to cause a denial of service (NULL pointer dereference and crash) in the way it processes JBIG2 PDF stream objects.

Notes

AuthorNote
jdstrand
just a crasher

Priority

Negligible

Cvss 3 Severity Score

5.5

Score breakdown

Status

Package Release Status
ipe
Launchpad, Ubuntu, Debian
hardy Ignored
(end of life)
lucid Ignored

maverick Ignored

natty Ignored

oneiric Ignored

upstream Needs triage

kdegraphics
Launchpad, Ubuntu, Debian
hardy Ignored
(end of life)
lucid Ignored

maverick Ignored

natty Ignored

oneiric Does not exist

upstream
Released (4.0)
koffice
Launchpad, Ubuntu, Debian
hardy Ignored
(end of life)
lucid Not vulnerable
(code not present)
maverick Not vulnerable
(code not present)
natty Not vulnerable
(code not present)
oneiric Not vulnerable
(code not present)
upstream Needs triage

libextractor
Launchpad, Ubuntu, Debian
hardy Ignored
(end of life)
lucid Ignored

maverick Ignored

natty Ignored

oneiric Ignored

upstream Needs triage

poppler
Launchpad, Ubuntu, Debian
hardy Ignored

lucid Ignored

maverick Ignored

natty Ignored

oneiric Ignored

upstream Needs triage

xpdf
Launchpad, Ubuntu, Debian
hardy Ignored
(end of life)
lucid Ignored

maverick Ignored

natty Ignored

oneiric Ignored

upstream Needs triage

Severity score breakdown

Parameter Value
Base score 5.5
Attack vector Local
Attack complexity Low
Privileges required None
User interaction Required
Scope Unchanged
Confidentiality None
Integrity impact None
Availability impact High
Vector CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H