DEBIAN-CVE-2018-13988

See a problem?
Please try reporting it to the source first.

Source

https://security-tracker.debian.org/tracker/DEBIAN-CVE-2018-13988

Import Source

https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2018-13988.json

JSON Data

https://api.test.osv.dev/v1/vulns/DEBIAN-CVE-2018-13988

Upstream

CVE-2018-13988

Published

2018-07-25T23:29:00Z

Modified

2025-09-19T06:22:08Z

Summary

[none]

Details

Poppler through 0.62 contains an out of bounds read vulnerability due to an incorrect memory access that is not mapped in its memory space, as demonstrated by pdfunite. This can result in memory corruption and denial of service. This may be exploitable when a victim opens a specially crafted PDF file.

References

https://security-tracker.debian.org/tracker/CVE-2018-13988

Affected packages

Debian:11 / poppler

Package

Name: poppler
Purl: pkg:deb/debian/poppler?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.69.0-2

Ecosystem specific

{
    "urgency": "low"
}

Debian:12 / poppler

Package

Name: poppler
Purl: pkg:deb/debian/poppler?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.69.0-2

Ecosystem specific

{
    "urgency": "low"
}

Debian:13 / poppler

Package

Name: poppler
Purl: pkg:deb/debian/poppler?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.69.0-2

Ecosystem specific

{
    "urgency": "low"
}

Debian:14 / poppler

Package

Name: poppler
Purl: pkg:deb/debian/poppler?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.69.0-2

Ecosystem specific

{
    "urgency": "low"
}