CVE-2018-10768

moderate-risk

Published 2018-05-06

There is a NULL pointer dereference in the AnnotPath::getCoordsLength function in Annot.h in an Ubuntu package for Poppler 0.24.5. A crafted input will lead to a remote denial of service attack. Later Ubuntu packages such as for Poppler 0.41.0 are not affected.

Do I need to act?

1.9% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 6.5/10 Medium

NETWORK / LOW complexity

Affected Products (7)

Poppler

Ubuntu Linux

Debian Linux

Ansible Tower

Enterprise Linux Desktop

Enterprise Linux Server

Enterprise Linux Workstation

Affected Vendors

Debian Redhat Canonical Freedesktop

References (12)

Third Party Advisory https://access.redhat.com/errata/RHBA-2019:0327

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:3140

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:3505

Exploit https://bugs.freedesktop.org/show_bug.cgi?id=106408

Mailing List https://lists.debian.org/debian-lts-announce/2018/10/msg00024.html

Third Party Advisory https://usn.ubuntu.com/3647-1/

Third Party Advisory https://access.redhat.com/errata/RHBA-2019:0327

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:3140

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:3505

Exploit https://bugs.freedesktop.org/show_bug.cgi?id=106408

Mailing List https://lists.debian.org/debian-lts-announce/2018/10/msg00024.html

Third Party Advisory https://usn.ubuntu.com/3647-1/

/ 100

moderate-risk

Severity 24/34 · High

Exploitability 5/34 · Minimal

Exposure 14/34 · Moderate