Your submission was sent successfully! Close

CVE-2018-16646

Published: 6 September 2018

In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.

Priority

Low

CVSS 3 base score: 6.5

Status

Package Release Status
poppler
Launchpad, Ubuntu, Debian
bionic
Released (0.62.0-2ubuntu2.4)
cosmic
Released (0.68.0-0ubuntu1.2)
precise Does not exist

trusty Does not exist
(trusty was released [0.24.5-2ubuntu4.13])
upstream Needs triage

xenial
Released (0.41.0-0ubuntu1.9)