ubuntu · CVE-2018-7174

Quick triage

Priority: negligible Published: 2018-02-15 21:29:00 UTC Updated: 2025-07-11 07:41:26 UTC

View at Official ubuntu advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2018-7174 negligible priority: Ubuntu including 4 source packages (ipe, libextractor, poppler, xpdf), 80 status rows across 20 suites (artful, bionic, cosmic, disco, eoan, focal, groovy, hirsute, impish, jammy, kinetic, lunar, mantic, noble, oracular, plucky, questing, trusty, upstream, xenial): ignored 30, not-affected 30, needs-triage 9, DNE 5, needed 5, deferred 1.

Description:

An issue was discovered in xpdf 4.00. An infinite loop in XRef::Xref allows an attacker to cause denial of service because loop detection exists only for tables, not streams.

cvelogic Threat Intelligence