{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2018-07-22T00:00:00", "descriptions": [{"lang": "en", "value": "Poppler through 0.62 contains an out of bounds read vulnerability due to an incorrect memory access that is not mapped in its memory space, as demonstrated by pdfunite. This can result in memory corruption and denial of service. This may be exploitable when a victim opens a specially crafted PDF file."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-04-24T05:06:04", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602838"}, {"name": "[debian-lts-announce] 20181031 [SECURITY] [DLA 1562-1] poppler security update", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00024.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.novell.com/show_bug.cgi?id=CVE-2018-13988"}, {"name": "RHSA-2018:3505", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHSA-2018:3505"}, {"name": "RHSA-2018:3140", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHSA-2018:3140"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://cgit.freedesktop.org/poppler/poppler/commit/?id=004e3c10df0abda214f0c293f9e269fdd979c5ee"}, {"tags": ["x_refsource_MISC"], "url": "http://packetstormsecurity.com/files/148661/PDFunite-0.62.0-Buffer-Overflow.html"}, {"name": "USN-3757-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "https://usn.ubuntu.com/3757-1/"}, {"name": "RHBA-2019:0327", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHBA-2019:0327"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-13988", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Poppler through 0.62 contains an out of bounds read vulnerability due to an incorrect memory access that is not mapped in its memory space, as demonstrated by pdfunite. This can result in memory corruption and denial of service. This may be exploitable when a victim opens a specially crafted PDF file."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1602838", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602838"}, {"name": "[debian-lts-announce] 20181031 [SECURITY] [DLA 1562-1] poppler security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00024.html"}, {"name": "https://bugzilla.novell.com/show_bug.cgi?id=CVE-2018-13988", "refsource": "CONFIRM", "url": "https://bugzilla.novell.com/show_bug.cgi?id=CVE-2018-13988"}, {"name": "RHSA-2018:3505", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2018:3505"}, {"name": "RHSA-2018:3140", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2018:3140"}, {"name": "https://cgit.freedesktop.org/poppler/poppler/commit/?id=004e3c10df0abda214f0c293f9e269fdd979c5ee", "refsource": "CONFIRM", "url": "https://cgit.freedesktop.org/poppler/poppler/commit/?id=004e3c10df0abda214f0c293f9e269fdd979c5ee"}, {"name": "http://packetstormsecurity.com/files/148661/PDFunite-0.62.0-Buffer-Overflow.html", "refsource": "MISC", "url": "http://packetstormsecurity.com/files/148661/PDFunite-0.62.0-Buffer-Overflow.html"}, {"name": "USN-3757-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/3757-1/"}, {"name": "RHBA-2019:0327", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHBA-2019:0327"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T09:21:40.696Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602838"}, {"name": "[debian-lts-announce] 20181031 [SECURITY] [DLA 1562-1] poppler security update", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00024.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.novell.com/show_bug.cgi?id=CVE-2018-13988"}, {"name": "RHSA-2018:3505", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2018:3505"}, {"name": "RHSA-2018:3140", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2018:3140"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://cgit.freedesktop.org/poppler/poppler/commit/?id=004e3c10df0abda214f0c293f9e269fdd979c5ee"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://packetstormsecurity.com/files/148661/PDFunite-0.62.0-Buffer-Overflow.html"}, {"name": "USN-3757-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "https://usn.ubuntu.com/3757-1/"}, {"name": "RHBA-2019:0327", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "https://access.redhat.com/errata/RHBA-2019:0327"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2018-13988", "datePublished": "2018-07-25T23:00:00", "dateReserved": "2018-07-11T00:00:00", "dateUpdated": "2024-08-05T09:21:40.696Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:freedesktop:poppler:*:*:*:*:*:*:*:*", "matchCriteriaId": "CA5EEC25-ED7A-46F1-B7E8-CB184E674DB0", "versionEndIncluding": "0.62.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "matchCriteriaId": "B5A6F2F3-4894-4392-8296-3B8DD2679084", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:redhat:ansible_tower:3.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "5817E2DF-3920-4886-A709-C51A70A6B7AD", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:openshift_container_platform:3.11:*:*:*:*:*:*:*", "matchCriteriaId": "2F87326E-0B56-4356-A889-73D026DB1D4B", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "33C068A4-3780-4EAB-A937-6082DF847564", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318", "vulnerable": true}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Poppler through 0.62 contains an out of bounds read vulnerability due to an incorrect memory access that is not mapped in its memory space, as demonstrated by pdfunite. This can result in memory corruption and denial of service. This may be exploitable when a victim opens a specially crafted PDF file."}, {"lang": "es", "value": "Poppler hasta la versi\u00f3n 0.62 contiene una vulnerabilidad de lectura fuera de l\u00edmites debido a un acceso incorrecto a la memoria que no se mapea en su espacio de memoria, tal y como queda demostrado con pdfunite. Esto puede resultar en la corrupci\u00f3n de memoria y una denegaci\u00f3n de servicio (DoS). Esto podr\u00eda ser explotable cuando una v\u00edctima abre un archivo PDF especialmente manipulado."}], "id": "CVE-2018-13988", "lastModified": "2019-04-25T14:16:37.597", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2018-07-25T23:29:00.243", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://packetstormsecurity.com/files/148661/PDFunite-0.62.0-Buffer-Overflow.html"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHBA-2019:0327"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2018:3140"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/errata/RHSA-2018:3505"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.novell.com/show_bug.cgi?id=CVE-2018-13988"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602838"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "https://cgit.freedesktop.org/poppler/poppler/commit/?id=004e3c10df0abda214f0c293f9e269fdd979c5ee"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00024.html"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://usn.ubuntu.com/3757-1/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-125"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"acknowledgement": "Red Hat would like to thank Hosein Askari for reporting this issue.", "affected_release": [{"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "accountsservice-0:0.6.50-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "adwaita-icon-theme-0:3.28.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "appstream-data-0:7-20180614.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "atk-0:2.28.1-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "at-spi2-atk-0:2.26.2-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "at-spi2-core-0:2.28.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "baobab-0:3.28.0-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "bolt-0:0.4-3.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "brasero-0:3.12.2-5.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "cairo-0:1.15.12-3.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "cheese-2:3.28.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "clutter-gst3-0:3.0.26-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "compat-exiv2-023-0:0.23-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "control-center-1:3.28.1-4.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "dconf-0:0.28.0-4.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "dconf-editor-0:3.28.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "devhelp-1:3.28.1-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "ekiga-0:4.0.1-8.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "empathy-0:3.12.13-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "eog-0:3.28.3-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "evince-0:3.28.2-5.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "evolution-0:3.28.5-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "evolution-data-server-0:3.28.5-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "evolution-ews-0:3.28.5-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "evolution-mapi-0:3.28.3-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "file-roller-0:3.28.1-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "flatpak-0:1.0.2-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "folks-1:0.11.4-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "fontconfig-0:2.13.0-4.3.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "freetype-0:2.8-12.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "fribidi-0:1.0.2-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "fwupd-0:1.0.8-4.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "fwupdate-0:12-5.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gcr-0:3.28.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gdk-pixbuf2-0:2.36.12-3.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gdm-1:3.28.2-9.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gedit-2:3.28.1-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gedit-plugins-0:3.28.1-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "geoclue2-0:2.4.8-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "geocode-glib-0:3.26.0-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gjs-0:1.52.3-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "glade-0:3.22.1-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "glib2-0:2.56.1-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "glibmm24-0:2.56.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "glib-networking-0:2.56.1-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-backgrounds-0:3.28.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-bluetooth-1:3.28.2-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-boxes-0:3.28.5-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-calculator-0:3.28.2-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-clocks-0:3.28.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-color-manager-0:3.28.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-contacts-0:3.28.2-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-desktop3-0:3.28.2-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-devel-docs-0:3.28.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-dictionary-0:3.26.1-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-disk-utility-0:3.28.3-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-documents-0:3.28.2-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-font-viewer-0:3.28.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-getting-started-docs-0:3.28.2-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-initial-setup-0:3.28.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-keyring-0:3.28.2-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-online-accounts-0:3.28.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-online-miners-0:3.26.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-packagekit-0:3.28.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-screenshot-0:3.26.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-session-0:3.28.1-5.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-settings-daemon-0:3.28.1-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-shell-0:3.28.3-6.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-shell-extensions-0:3.28.1-5.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-software-0:3.28.2-3.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-system-monitor-0:3.28.2-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-terminal-0:3.28.2-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-themes-standard-0:3.28-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-tweak-tool-0:3.28.1-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnome-user-docs-0:3.28.2-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gnote-0:3.28.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gobject-introspection-0:1.56.1-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gom-0:0.3.3-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "google-noto-emoji-fonts-0:20180508-4.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "grilo-0:0.3.6-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "grilo-plugins-0:0.3.7-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gsettings-desktop-schemas-0:3.28.0-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gspell-0:1.6.1-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gssdp-0:1.0.2-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gstreamer1-plugins-base-0:1.10.4-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gtk3-0:3.22.30-3.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gtk-doc-0:1.28-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gtksourceview3-0:3.24.8-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gucharmap-0:10.0.4-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gupnp-0:1.0.2-5.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gupnp-igd-0:0.2.5-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "gvfs-0:1.36.2-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "harfbuzz-0:1.7.5-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "json-glib-0:1.4.2-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libappstream-glib-0:0.7.8-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libchamplain-0:0.12.16-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libcroco-0:0.6.12-4.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libgdata-0:0.17.9-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libgee-0:0.20.1-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libgepub-0:0.6.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libgexiv2-0:0.10.8-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libgnomekbd-0:3.26.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libgovirt-0:0.3.4-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libgtop2-0:2.38.0-3.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libgweather-0:3.28.2-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libgxps-0:0.3.0-4.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libical-0:3.0.3-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libjpeg-turbo-0:1.2.90-6.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libmediaart-0:1.9.4-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libosinfo-0:1.1.0-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libpeas-0:1.22.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "librsvg2-0:2.40.20-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libsecret-0:0.18.6-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libsoup-0:2.62.2-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "libwnck3-0:3.24.1-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "mozjs52-0:52.9.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "mutter-0:3.28.3-4.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "nautilus-0:3.26.3.1-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "nautilus-sendto-1:3.8.6-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "openchange-0:2.3-3.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "osinfo-db-0:20180531-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "PackageKit-0:1.1.10-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "pango-0:1.42.4-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "poppler-0:0.26.5-20.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "pyatspi-0:2.26.0-3.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "redhat-logos-0:70.0.3-7.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "rest-0:0.8.1-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "rhythmbox-0:3.4.2-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "seahorse-nautilus-0:3.11.92-11.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "shotwell-0:0.28.4-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "sushi-0:3.28.3-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "totem-1:3.26.2-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "totem-pl-parser-0:3.26.1-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "upower-0:0.99.7-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "vala-0:0.40.8-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "vino-0:3.22.0-7.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "vte291-0:0.52.2-2.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "wayland-0:1.15.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "wayland-protocols-0:1.14-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "webkitgtk4-0:2.20.5-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "xdg-desktop-portal-0:1.0.2-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "xdg-desktop-portal-gtk-0:1.0.2-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "yelp-2:3.28.1-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "yelp-tools-0:3.28.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "yelp-xsl-0:3.28.0-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}, {"advisory": "RHSA-2018:3140", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "zenity-0:3.28.1-1.el7", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2018-10-30T00:00:00Z"}], "bugzilla": {"description": "poppler: out of bounds read in pdfunite", "id": "1602838", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1602838"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.3", "cvss3_scoring_vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "status": "verified"}, "cwe": "CWE-125", "details": ["Poppler through 0.62 contains an out of bounds read vulnerability due to an incorrect memory access that is not mapped in its memory space, as demonstrated by pdfunite. This can result in memory corruption and denial of service. This may be exploitable when a victim opens a specially crafted PDF file."], "name": "CVE-2018-13988", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:5", "fix_state": "Will not fix", "package_name": "poppler", "product_name": "Red Hat Enterprise Linux 5"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Will not fix", "package_name": "poppler", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "poppler", "product_name": "Red Hat Enterprise Linux 8"}], "public_date": "2018-07-23T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2018-13988\nhttps://nvd.nist.gov/vuln/detail/CVE-2018-13988"], "statement": "Red Hat Product Security has rated this issue as having a security impact of Low, and a future update may address this flaw.", "threat_severity": "Low", "upstream_fix": "poppler 0.67.0"}