VulnerableCode Package Details - pkg:deb/debian/poppler@0.22.5-4?distro=trixie

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/poppler@0.22.5-4?distro=trixie

purl	pkg:deb/debian/poppler@0.22.5-4?distro=trixie

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-9hnb-h64u-zkev	In Xpdf 4.01.01, a buffer over-read could be triggered in FoFiType1C::convertToType1 in fofi/FoFiType1C.cc when the index number is larger than the charset array bounds. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It allows an attacker to use a crafted pdf file to cause Denial of Service or an information leak, or possibly have unspecified other impact.	CVE-2019-12957

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T10:58:05.189765+00:00	Debian Importer	Fixing	VCID-9hnb-h64u-zkev	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T07:26:24.547972+00:00	Debian Importer	Fixing	VCID-9hnb-h64u-zkev	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:50:12.207550+00:00	Debian Importer	Fixing	VCID-9hnb-h64u-zkev	https://security-tracker.debian.org/tracker/data/json	38.1.0