CVE-2019-10022

CWE-476NULL Pointer Dereference8 documents6 sources
Severity
5.5MEDIUM
EPSS
0.2%
top 60.69%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Xpdfreader Xpdf
Timeline
PublishedMar 25
Latest updateMay 14

Description

An issue was discovered in Xpdf 4.01.01. There is a NULL pointer dereference in the function Gfx::opSetExtGState in Gfx.cc.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

NVDxpdfreader/xpdf4.01.01
Ubuntupoppler< 0.41.0-0ubuntu1.13+1

🔴Vulnerability Details

3
GHSA
GHSA-px6r-pjwr-j383: An issue was discovered in Xpdf 42022-05-14
OSV
CVE-2019-10022: An issue was discovered in Xpdf 42019-03-25
CVEList
CVE-2019-10022: An issue was discovered in Xpdf 42019-03-24

📋Vendor Advisories

1
Debian
CVE-2019-10022: xpdf - An issue was discovered in Xpdf 4.01.01. There is a NULL pointer dereference in ...2019

💬Community

3
Bugzilla
CVE-2019-10018 CVE-2019-10020 CVE-2019-10021 CVE-2019-10022 CVE-2019-10023 CVE-2019-10024 CVE-2019-10025 xpdf: various flaws [fedora-all]2019-03-28
Bugzilla
CVE-2019-10022 xpdf: null pointer dereference in function Gfx::opSetExtGState in Gfx.cc2019-03-28
Bugzilla
CVE-2019-10018 CVE-2019-10020 CVE-2019-10021 CVE-2019-10022 CVE-2019-10023 CVE-2019-10024 CVE-2019-10025 xpdf: various flaws [epel-all]2019-03-28
CVE-2019-10022 (MEDIUM CVSS 5.5) | An issue was discovered in Xpdf 4.0 | cvebase.io