Search for packages
| purl | pkg:deb/debian/libpdfbox2-java@2.0.27-2?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-4zpd-uwnd-zfg1 | Improper Check for Unusual or Exceptional Conditions In Apache PDFBox, a carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. |
CVE-2021-31811
GHSA-fg3j-q579-v8x4 |
| VCID-6wps-kttd-rkhv | Excessive Iteration In Apache PDFBox, a carefully crafted PDF file can trigger an infinite loop while loading the file. |
CVE-2021-31812
GHSA-7grw-6pjh-jpc9 |
| VCID-qu7g-tuf1-87ab | Improper Input Validation In Apache PDFBox, a carefully crafted PDF file can trigger an extremely long-running computation when parsing the page tree. |
CVE-2018-11797
GHSA-gx96-vgf7-hwfg |
| VCID-uhvk-357k-wuea | Excessive Iteration A carefully crafted PDF file can trigger an infinite loop while loading a file. |
CVE-2021-27807
GHSA-2h3j-m7gr-25xj |
| VCID-x3mz-kw7r-9bcg | Loop with Unreachable Exit Condition (Infinite Loop) In Apache PDFBox, a carefully crafted (or fuzzed) file can trigger an infinite loop which leads to an out of memory exception in the `AFMParser`. |
CVE-2018-8036
GHSA-j2xq-pfff-mvgg |
| VCID-zpn8-wp4m-fugy | Uncontrolled Ressource Consumption A carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox and pri versions. |
CVE-2021-27906
GHSA-6vqp-h455-42mr |
| VCID-zygf-j3g8-2yc3 | Improper Restriction of XML External Entity Reference Apache PDFBox does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XFDF. |
CVE-2019-0228
GHSA-c9jj-3wvg-q65h |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-06-04T16:40:32.914261+00:00 | Debian Importer | Fixing | VCID-6wps-kttd-rkhv | https://security-tracker.debian.org/tracker/data/json | 38.6.0 |
| 2026-06-04T16:40:32.887351+00:00 | Debian Importer | Fixing | VCID-4zpd-uwnd-zfg1 | https://security-tracker.debian.org/tracker/data/json | 38.6.0 |
| 2026-06-04T16:40:32.865500+00:00 | Debian Importer | Fixing | VCID-zpn8-wp4m-fugy | https://security-tracker.debian.org/tracker/data/json | 38.6.0 |
| 2026-06-04T16:40:32.843311+00:00 | Debian Importer | Fixing | VCID-uhvk-357k-wuea | https://security-tracker.debian.org/tracker/data/json | 38.6.0 |
| 2026-06-04T16:40:32.820899+00:00 | Debian Importer | Fixing | VCID-zygf-j3g8-2yc3 | https://security-tracker.debian.org/tracker/data/json | 38.6.0 |
| 2026-06-04T16:40:32.800495+00:00 | Debian Importer | Fixing | VCID-x3mz-kw7r-9bcg | https://security-tracker.debian.org/tracker/data/json | 38.6.0 |
| 2026-06-04T16:40:32.776437+00:00 | Debian Importer | Fixing | VCID-qu7g-tuf1-87ab | https://security-tracker.debian.org/tracker/data/json | 38.6.0 |