CVE-2010-3702
CVE-2010-3702 is a high-severity vulnerability in Redhat Enterprise Linux Desktop with a CVSS 2.0 base score of 7.5. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-476.
Key facts
- Severity: High (CVSS 2.0 base score 7.5)
- EPSS exploit prediction: 3% (84th percentile)
- Actively exploited: Not listed in CISA KEV
- Weakness: CWE-476
- Affected product: Redhat Enterprise Linux Desktop
- Published:
- Last modified:
Description
The Gfx::getPos function in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, CUPS, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service (crash) via unknown vectors that trigger an uninitialized pointer dereference.
Frequently asked questions
- What is CVE-2010-3702?
- The Gfx::getPos function in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, CUPS, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service (crash) via unknown vectors that trigger an uninitialized pointer dereference.
- How severe is CVE-2010-3702?
- CVE-2010-3702 has a CVSS 2.0 base score of 7.5, rated high severity.
- Is CVE-2010-3702 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 3% (84th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2010-3702?
- CVE-2010-3702 primarily affects Redhat Enterprise Linux Desktop. In total, 29 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2010-3702?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its high severity, prioritise patching exposed systems.
- When was CVE-2010-3702 published?
- CVE-2010-3702 was published on 2010-11-05 and last updated on 2026-06-16.
References
- ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl5.patch
- http://cgit.freedesktop.org/poppler/poppler/commit/?id=e853106b58d6b4b0467dbd6436c9bb1cfbd372cf
- http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050268.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050285.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050390.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049392.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049523.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049545.html
- http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00006.html
- http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00000.html
- http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html
- http://rhn.redhat.com/errata/RHSA-2012-1201.html
- http://secunia.com/advisories/42141
- http://secunia.com/advisories/42357
- http://secunia.com/advisories/42397
- http://secunia.com/advisories/42691
- http://secunia.com/advisories/43079
- http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.571720
- http://www.debian.org/security/2010/dsa-2119
- http://www.debian.org/security/2010/dsa-2135
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:228
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:229
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:230
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:231
- http://www.mandriva.com/security/advisories?name=MDVSA-2012:144
- http://www.openoffice.org/security/cves/CVE-2010-3702_CVE-2010-3704.html
- http://www.openwall.com/lists/oss-security/2010/10/04/6
- http://www.redhat.com/support/errata/RHSA-2010-0749.html
- http://www.redhat.com/support/errata/RHSA-2010-0750.html
- http://www.redhat.com/support/errata/RHSA-2010-0751.html
Affected products (29)
- cpe:2.3:a:apple:cups:*:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop:poppler:*:*:*:*:*:*:*:*
- cpe:2.3:a:xpdfreader:xpdf:*:*:*:*:*:*:*:*
- cpe:2.3:a:xpdfreader:xpdf:3.02:-:*:*:*:*:*:*
- cpe:2.3:a:xpdfreader:xpdf:3.02:pl1:*:*:*:*:*:*
- cpe:2.3:a:xpdfreader:xpdf:3.02:pl2:*:*:*:*:*:*
- cpe:2.3:a:xpdfreader:xpdf:3.02:pl3:*:*:*:*:*:*
- cpe:2.3:a:xpdfreader:xpdf:3.02:pl4:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:12:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:14:*:*:*:*:*:*:*
- cpe:2.3:o:opensuse:opensuse:11.1:*:*:*:*:*:*:*
- cpe:2.3:o:opensuse:opensuse:11.2:*:*:*:*:*:*:*
- cpe:2.3:o:opensuse:opensuse:11.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*
- cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:-:*:*:*
- cpe:2.3:o:suse:linux_enterprise_server:11:-:*:*:*:*:*:*
- cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*
More vulnerabilities in Redhat Enterprise Linux Desktop
- CVE-2018-18505 — Critical (CVSS 10.0): An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to…
- CVE-2014-0247 — Critical (CVSS 10.0): LibreOffice 4.2.4 executes unspecified VBA macros automatically, which has unspecified impact and attack vectors,…
- CVE-2014-1512 — Critical (CVSS 10.0): Use-after-free vulnerability in the TypeObject class in the JavaScript engine in Mozilla Firefox before 28.0, Firefox…
- CVE-2013-5843 — Critical (CVSS 10.0): Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier,…
- CVE-2013-5842 — Critical (CVSS 10.0): Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and…
- CVE-2013-5830 — Critical (CVSS 10.0): Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier,…
All CVEs affecting Redhat Enterprise Linux Desktop →
Other CWE-476 (NULL Pointer Dereference) vulnerabilities
- CVE-2022-36648 — Critical (CVSS 10.0): The hardware emulation in the of_dpa_cmd_add_l2_flood of rocker device model in QEMU, as used in 7.0.0 and earlier,…
- CVE-2020-14500 — Critical (CVSS 10.0): Secomea GateManager all versions prior to 9.2c, An attacker can send a negative value and overwrite arbitrary data.
- CVE-2010-2495 — Critical (CVSS 10.0): The pppol2tp_xmit function in drivers/net/pppol2tp.c in the L2TP implementation in the Linux kernel before 2.6.34 does…
- CVE-2026-46195 — Critical (CVSS 9.8): In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before building…
- CVE-2026-31657 — Critical (CVSS 9.8): In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways by…
- CVE-2026-31436 — Critical (CVSS 9.8): In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix possible wrong descriptor…
Browse all CWE-476 (NULL Pointer Dereference) vulnerabilities →