CVE-2010-5110
poppler - security update
EPSS 0.78%
Description
DCTStream.cc in Poppler before 0.13.3 allows remote attackers to cause a denial of service (crash) via a crafted PDF file.
How to fix CVE-2010-5110
To remediate CVE-2010-5110, upgrade the affected package to a fixed version below.
- Debian/poppler—upgrade to 0.16.3-1 or later
- Debian/poppler—upgrade to 0.12.4-1.2+squeeze4 or later
Is CVE-2010-5110 being exploited?
Low — EPSS is 0.8%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 0.16.3-1
- from 0, < 0.12.4-1.2+squeeze4