{"id":"USN-4830-1","summary":"okular vulnerability","details":"It was discovered that Okular mishandled certain crafted archives during\nextraction. An attacker could use this vulnerability to write arbitrary\nfiles to the filesystem.","modified":"2026-04-27T15:49:19.173402Z","published":"2021-03-15T22:15:03Z","related":["UBUNTU-CVE-2018-1000801"],"upstream":["CVE-2018-1000801","UBUNTU-CVE-2018-1000801"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-4830-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2018-1000801"}],"affected":[{"package":{"name":"okular","ecosystem":"Ubuntu:Pro:18.04:LTS","purl":"pkg:deb/ubuntu/okular@4:17.12.3-0ubuntu1+esm1?arch=source&distro=esm-apps/bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4:17.12.3-0ubuntu1+esm1"}]}],"versions":["4:17.04.3-0ubuntu1","4:17.08.3-0ubuntu1","4:17.08.3-0ubuntu2","4:17.12.2-0ubuntu3","4:17.12.3-0ubuntu1"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro: https://ubuntu.com/pro","binaries":[{"binary_name":"libokular5core8","binary_version":"4:17.12.3-0ubuntu1+esm1"},{"binary_name":"okular","binary_version":"4:17.12.3-0ubuntu1+esm1"},{"binary_name":"okular-extra-backends","binary_version":"4:17.12.3-0ubuntu1+esm1"},{"binary_name":"okular-mobile","binary_version":"4:17.12.3-0ubuntu1+esm1"},{"binary_name":"qml-module-org-kde-okular","binary_version":"4:17.12.3-0ubuntu1+esm1"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:Pro:18.04:LTS","cves":[{"severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"type":"Ubuntu","score":"low"}],"id":"CVE-2018-1000801"}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-4830-1.json"}}],"schema_version":"1.7.5"}