CVE-2019-10018

CWE-3699 documents7 sources

Severity

5.5MEDIUM

EPSS

0.3%

top 44.63%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Canonical Ubuntu Linux Debian Debian Linux Xpdfreader Xpdf

Timeline

PublishedMar 25

Latest updateMay 13

Description

An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec at Function.cc for the psOpIdiv case.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

▶NVDxpdfreader/xpdf4.01.01

▶Debianpoppler< 0.57.0-2+3

Also affects: Debian Linux 9.0, Ubuntu Linux 16.04, 18.04, 18.10, 19.04

🔴Vulnerability Details

GHSA

GHSA-m9m9-cm93-p2r4: An issue was discovered in Xpdf 4↗2022-05-13

▶

OSV

CVE-2019-10018: An issue was discovered in Xpdf 4↗2019-03-25

▶

CVEList

CVE-2019-10018: An issue was discovered in Xpdf 4↗2019-03-24

▶

📋Vendor Advisories

Ubuntu

poppler vulnerabilities↗2019-06-27

▶

Debian

CVE-2019-10018: poppler - An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScr...↗2019

▶

💬Community

Bugzilla

CVE-2019-10018 CVE-2019-10020 CVE-2019-10021 CVE-2019-10022 CVE-2019-10023 CVE-2019-10024 CVE-2019-10025 xpdf: various flaws [fedora-all]↗2019-03-28

▶

Bugzilla

CVE-2019-10018 CVE-2019-10020 CVE-2019-10021 CVE-2019-10022 CVE-2019-10023 CVE-2019-10024 CVE-2019-10025 xpdf: various flaws [epel-all]↗2019-03-28

▶

Bugzilla

CVE-2019-10018 xpdf: floating point exception in function PostScriptFunction::exec in Function.cc↗2019-03-28

▶