CVE-2018-9918 — Uncontrolled Recursion in Project Qpdf

CWE-674 — Uncontrolled Recursion CWE-400 — Uncontrolled Resource Consumption10 documents8 sources

Severity

7.8HIGHNVD

EPSS

0.4%

top 39.08%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Qpdf Project Qpdf Canonical Ubuntu Linux

Timeline

PublishedApr 10

Latest updateMay 13

Description

libqpdf.a in QPDF through 8.0.2 mishandles certain "expected dictionary key but found non-name object" cases, allowing remote attackers to cause a denial of service (stack exhaustion), related to the QPDFObjectHandle and QPDF_Dictionary classes, because nesting in direct objects is not restricted.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

▶Debianqpdf_project/qpdf< 8.0.2-3+3

▶NVDqpdf_project/qpdf8.0.2

Also affects: Ubuntu Linux 14.04, 16.04, 17.10

Patches

Patch: github.com ↗Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-mcgj-mgj8-8cr3: libqpdf↗2022-05-13

▶

OSV

CVE-2018-9918: libqpdf↗2018-04-10

▶

CVEList

CVE-2018-9918: libqpdf↗2018-04-10

▶

📋Vendor Advisories

Ubuntu

QPDF vulnerabilities↗2018-05-07

▶

Red Hat

qpdf: stack exhaustion in QPDFObjectHandle and QPDF_Dictionary classes in libqpdf.a↗2018-04-10

▶

Debian

CVE-2018-9918: qpdf - libqpdf.a in QPDF through 8.0.2 mishandles certain "expected dictionary key but ...↗2018

▶

💬Community

Bugzilla

CVE-2018-9918 qpdf: stack exhaustion in QPDFObjectHandle and QPDF_Dictionary classes in libqpdf.a↗2018-04-12

▶

Bugzilla

CVE-2018-9918 qpdf: stack exhaustion in QPDFObjectHandle and QPDF_Dictionary classes in libqpdf.a [epel-6]↗2018-04-12

▶

Bugzilla

CVE-2018-9918 qpdf: stack exhaustion in QPDFObjectHandle and QPDF_Dictionary classes in libqpdf.a [fedora-all]↗2018-04-12

▶