rpm package
suse/apache-pdfbox&distro=SUSE Linux Enterprise Software Development Kit 12 SP3
pkg:rpm/suse/apache-pdfbox&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-11797 | Med | 5.5 | < 1.8.12-3.5.4 | 1.8.12-3.5.4 | Oct 5, 2018 | In Apache PDFBox 1.8.0 to 1.8.15 and 2.0.0RC1 to 2.0.11, a carefully crafted PDF file can trigger an extremely long running computation when parsing the page tree. | |
| CVE-2018-8036 | Med | 6.5 | < 1.8.12-3.5.4 | 1.8.12-3.5.4 | Jul 3, 2018 | In Apache PDFBox 1.8.0 to 1.8.14 and 2.0.0RC1 to 2.0.10, a carefully crafted (or fuzzed) file can trigger an infinite loop which leads to an out of memory exception in Apache PDFBox's AFMParser. |
- affected < 1.8.12-3.5.4fixed 1.8.12-3.5.4
In Apache PDFBox 1.8.0 to 1.8.15 and 2.0.0RC1 to 2.0.11, a carefully crafted PDF file can trigger an extremely long running computation when parsing the page tree.
- affected < 1.8.12-3.5.4fixed 1.8.12-3.5.4
In Apache PDFBox 1.8.0 to 1.8.14 and 2.0.0RC1 to 2.0.10, a carefully crafted (or fuzzed) file can trigger an infinite loop which leads to an out of memory exception in Apache PDFBox's AFMParser.