Your submission was sent successfully! Close

CVE-2018-18897

Published: 2 November 2018

An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as demonstrated by pdftocairo.

Priority

Negligible

CVSS 3 base score: 6.5

Status

Package Release Status
poppler
Launchpad, Ubuntu, Debian
bionic
Released (0.62.0-2ubuntu2.9)
cosmic
Released (0.68.0-0ubuntu1.7)
disco Not vulnerable
(0.74.0-0ubuntu1.1)
precise Does not exist

trusty Does not exist
(trusty was needed)
upstream Needs triage

xenial
Released (0.41.0-0ubuntu1.14)
Patches:
upstream: https://gitlab.freedesktop.org/poppler/poppler/commit/e07c8b4784234383cb5ddcf1133ea91a772506e2