CVE-2021-37819

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2021-37819

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-37819.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2021-37819

Related

UBUNTU-CVE-2021-37819

Published

2022-09-09T22:15:08Z

Modified

2024-10-12T08:07:10.552731Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

PDF Labs pdftk-java v3.2.3 was discovered to contain an infinite loop via the component /text/pdf/PdfReader.java.

References

Affected packages

Debian:11 / libitext-java

Package

Name: libitext-java
Purl: pkg:deb/debian/libitext-java?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.1.7-12

2.1.7-13

2.1.7-14

2.1.7-15

2.1.7-16

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / libitext-java

Package

Name: libitext-java
Purl: pkg:deb/debian/libitext-java?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.1.7-14

2.1.7-15

2.1.7-16

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / libitext-java

Package

Name: libitext-java
Purl: pkg:deb/debian/libitext-java?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.1.7-16

Affected versions

2.*

2.1.7-14

2.1.7-15

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:11 / libitext1-java

Package

Name: libitext1-java
Purl: pkg:deb/debian/libitext1-java?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.4-7

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / libitext1-java

Package

Name: libitext1-java
Purl: pkg:deb/debian/libitext1-java?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.4-7

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / libitext1-java

Package

Name: libitext1-java
Purl: pkg:deb/debian/libitext1-java?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.4-7

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:11 / libitext5-java

Package

Name: libitext5-java
Purl: pkg:deb/debian/libitext5-java?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.5.13.2-1

5.5.13.2-1+deb11u1

5.5.13.2-2

5.5.13.3-1

5.5.13.3-2

5.5.13.3-3

5.5.13.3-4

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / libitext5-java

Package

Name: libitext5-java
Purl: pkg:deb/debian/libitext5-java?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.5.13.3-2

5.5.13.3-3

5.5.13.3-4

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / libitext5-java

Package

Name: libitext5-java
Purl: pkg:deb/debian/libitext5-java?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.5.13.3-4

Affected versions

5.*

5.5.13.3-2

5.5.13.3-3

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:11 / pdftk

Package

Name: pdftk
Purl: pkg:deb/debian/pdftk?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.02-5

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / pdftk

Package

Name: pdftk
Purl: pkg:deb/debian/pdftk?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.02-5

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:11 / pdftk-java

Package

Name: pdftk-java
Purl: pkg:deb/debian/pdftk-java?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

3.*

3.2.2-1

3.3.2-1

3.3.3-1

3.3.3-2

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / pdftk-java

Package

Name: pdftk-java
Purl: pkg:deb/debian/pdftk-java?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.3.2-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / pdftk-java

Package

Name: pdftk-java
Purl: pkg:deb/debian/pdftk-java?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.3.2-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / gitlab.com/pdftk-java/pdftk

Affected ranges

Type: GIT
Repo: https://gitlab.com/pdftk-java/pdftk
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

8093f78c32f8dd4ab706dbcca85beddea2371dd7

Affected versions

Other

test-issue52

v3.*

v3.0.0

v3.0.1

v3.0.10

v3.0.2

v3.0.3

v3.0.4

v3.0.5

v3.0.6

v3.0.7

v3.0.8

v3.0.9

v3.1.0

v3.1.1

v3.1.2

v3.1.3

v3.2.0

v3.2.1

v3.2.2

v3.2.3