Search for packages
| purl | pkg:deb/ubuntu/poppler@0.41.0-0ubuntu1.6 |
| Next non-vulnerable version | 0.86.1-0ubuntu1 |
| Latest non-vulnerable version | 0.86.1-0ubuntu1 |
| Risk | 4.4 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-19ru-ur7b-aaar
Aliases: CVE-2019-9903 |
PDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict marking, leading to stack consumption in the function Dict::find() located at Dict.cc, which can (for example) be triggered by passing a crafted pdf file to the pdfunite binary. |
Affected by 39 other vulnerabilities. |
|
VCID-2kaq-hk1h-aaad
Aliases: CVE-2019-12493 |
A stack-based buffer over-read exists in PostScriptFunction::transform in Function.cc in Xpdf 4.01.01 because GfxSeparationColorSpace and GfxDeviceNColorSpace mishandle tint transform functions. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It might allow an attacker to cause Denial of Service or leak memory data. |
Affected by 18 other vulnerabilities. |
|
VCID-386t-15qg-aaad
Aliases: CVE-2018-8100 |
The JPXStream::readTilePart function in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-3ktt-caew-aaam
Aliases: CVE-2018-16646 |
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. |
Affected by 50 other vulnerabilities. |
|
VCID-3r4u-f5d8-aaad
Aliases: CVE-2018-18897 |
An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as demonstrated by pdftocairo. |
Affected by 39 other vulnerabilities. |
|
VCID-3u1q-4ysd-aaam
Aliases: CVE-2018-19059 |
An issue was discovered in Poppler 0.71.0. There is a out-of-bounds read in EmbFile::save2 in FileSpec.cc, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating embedded files before save attempts. |
Affected by 50 other vulnerabilities. |
|
VCID-418t-mu3d-aaah
Aliases: CVE-2019-14291 |
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA==6 case 3. |
Affected by 3 other vulnerabilities. |
|
VCID-44u8-b9b3-aaan
Aliases: CVE-2019-10023 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec at Function.cc for the psOpMod case. |
Affected by 18 other vulnerabilities. |
|
VCID-4f2w-5h3r-aaac
Aliases: CVE-2018-7452 |
A NULL pointer dereference in JPXStream::fillReadBuf in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-4g39-b543-aaaj
Aliases: CVE-2019-13288 |
In Xpdf 4.01.01, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646. |
Affected by 3 other vulnerabilities. |
|
VCID-4ngn-7a7x-aaah
Aliases: CVE-2018-8104 |
The BufStream::lookChar function in Stream.cc in xpdf 4.00 allows attackers to launch denial of service (heap-based buffer over-read and application crash) via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-4qct-nfpa-aaam
Aliases: CVE-2018-8101 |
The JPXStream::inverseTransformLevel function in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service (heap-based buffer over-read and application crash) via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-4ufh-bmm7-aaag
Aliases: CVE-2019-14292 |
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA!=6 case 1. |
Affected by 3 other vulnerabilities. |
|
VCID-532m-essb-aaab
Aliases: CVE-2019-9588 |
There is an Invalid memory access in gAtomicIncrement() located at GMutex.h in Xpdf 4.01. It can be triggered by sending a crafted pdf file to (for example) the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. |
Affected by 18 other vulnerabilities. |
|
VCID-626r-az12-aaam
Aliases: CVE-2018-8103 |
The JBIG2Stream::readGenericBitmap function in JBIG2Stream.cc in xpdf 4.00 allows attackers to launch denial of service (heap-based buffer over-read and application crash) via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-6ap1-6xw4-aaaa
Aliases: CVE-2018-19058 |
An issue was discovered in Poppler 0.71.0. There is a reachable abort in Object.h, will lead to denial of service because EmbFile::save2 in FileSpec.cc lacks a stream check before saving an embedded file. |
Affected by 50 other vulnerabilities. |
|
VCID-6tf1-hk7q-aaak
Aliases: CVE-2018-8105 |
The JPXStream::fillReadBuf function in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service (heap-based buffer over-read and application crash) via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-7apf-u8e8-aaag
Aliases: CVE-2019-10021 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function ImageStream::ImageStream at Stream.cc for nComps. |
Affected by 18 other vulnerabilities. |
|
VCID-91np-ztz7-aaaa
Aliases: CVE-2019-12958 |
In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in FoFiType1C::convertToType0 in fofi/FoFiType1C.cc when it is trying to access the second privateDicts array element, because the privateDicts array has only one element allocated. |
Affected by 72 other vulnerabilities. |
|
VCID-9swe-upds-aaae
Aliases: CVE-2019-7310 |
In Poppler 0.73.0, a heap-based buffer over-read (due to an integer signedness error in the XRef::getEntry function in XRef.cc) allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PDF document, as demonstrated by pdftocairo. |
Affected by 46 other vulnerabilities. |
|
VCID-a8jn-b1fg-aaaj
Aliases: CVE-2017-18267 |
The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler through 0.64.0 allows remote attackers to cause a denial of service (infinite recursion) via a crafted PDF file, as demonstrated by pdftops. |
Affected by 56 other vulnerabilities. |
|
VCID-amw7-cbg1-aaaj
Aliases: CVE-2020-27778 |
A flaw was found in Poppler in the way certain PDF files were converted into HTML. A remote attacker could exploit this flaw by providing a malicious PDF file that, when processed by the 'pdftohtml' program, would crash the application causing a denial of service. |
Affected by 0 other vulnerabilities. |
|
VCID-aq9e-pt68-aaae
Aliases: CVE-2018-13988 |
Poppler through 0.62 contains an out of bounds read vulnerability due to an incorrect memory access that is not mapped in its memory space, as demonstrated by pdfunite. This can result in memory corruption and denial of service. This may be exploitable when a victim opens a specially crafted PDF file. |
Affected by 55 other vulnerabilities. |
|
VCID-b78c-c1dj-aaap
Aliases: CVE-2019-10024 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function Splash::scaleImageYuXu at Splash.cc for y Bresenham parameters. |
Affected by 18 other vulnerabilities. |
|
VCID-cbnm-75mk-aaap
Aliases: CVE-2018-8107 |
The JPXStream::close function in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service (heap-based buffer over-read and application crash) via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-d41f-2y3y-aaag
Aliases: CVE-2017-9083 |
poppler 0.54.0, as used in Evince and other products, has a NULL pointer dereference in the JPXStream::readUByte function in JPXStream.cc. For example, the perf_test utility will crash (segmentation fault) when parsing an invalid PDF file. |
Affected by 75 other vulnerabilities. |
|
VCID-dhuy-8nen-aaam
Aliases: CVE-2018-19149 |
Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment. |
Affected by 54 other vulnerabilities. |
|
VCID-dpqp-4rff-aaar
Aliases: CVE-2019-13291 |
In Xpdf 4.01.01, there is a heap-based buffer over-read in the function DCTStream::readScan() located at Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It might allow an attacker to cause Information Disclosure. |
Affected by 3 other vulnerabilities. |
|
VCID-e3da-jf18-aaab
Aliases: CVE-2018-7455 |
An out-of-bounds read in JPXStream::readTilePart in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-emyh-9z9x-aaas
Aliases: CVE-2019-10020 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function Splash::scaleImageYuXu at Splash.cc for x Bresenham parameters. |
Affected by 18 other vulnerabilities. |
|
VCID-euhk-by2y-aaaa
Aliases: CVE-2018-7175 |
An issue was discovered in xpdf 4.00. A NULL pointer dereference in readCodestream allows an attacker to cause denial of service via a JPX image with zero components. |
Affected by 57 other vulnerabilities. |
|
VCID-eyva-cpym-aaah
Aliases: CVE-2018-7453 |
Infinite recursion in AcroForm::scanField in AcroForm.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file due to lack of loop checking, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-fhmx-xq55-aaae
Aliases: CVE-2019-14289 |
An issue was discovered in Xpdf 4.01.01. There is an integer overflow in the function JBIG2Bitmap::combine at JBIG2Stream.cc for the "multiple bytes per line" case. |
Affected by 3 other vulnerabilities. |
|
VCID-gapd-e9z5-aaan
Aliases: CVE-2019-10018 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec at Function.cc for the psOpIdiv case. |
Affected by 18 other vulnerabilities. |
|
VCID-gyp4-ethr-aaab
Aliases: CVE-2019-13283 |
In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in strncpy from FoFiType1::parse in fofi/FoFiType1.cc because it does not ensure the source string has a valid length before making a fixed-length copy. It can, for example, be triggered by sending a crafted PDF document to the pdftotext tool. It allows an attacker to use a crafted pdf file to cause Denial of Service or an information leak, or possibly have unspecified other impact. |
Affected by 3 other vulnerabilities. |
|
VCID-h26e-539m-aaam
Aliases: CVE-2019-9587 |
There is a stack consumption issue in md5Round1() located in Decrypt.cc in Xpdf 4.01. It can be triggered by sending a crafted pdf file to (for example) the pdfimages binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. This is related to Catalog::countPageTree. |
Affected by 18 other vulnerabilities. |
|
VCID-h76j-y5d5-aaak
Aliases: CVE-2019-14288 |
An issue was discovered in Xpdf 4.01.01. There is an Integer overflow in the function JBIG2Bitmap::combine at JBIG2Stream.cc for the "one byte per line" case. |
Affected by 3 other vulnerabilities. |
|
VCID-hkb8-2qw6-aaaj
Aliases: CVE-2019-10026 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec in Function.cc for the psOpRoll case. |
Affected by 18 other vulnerabilities. |
|
VCID-hn14-qtpz-aaaq
Aliases: CVE-2019-9877 |
There is an invalid memory access vulnerability in the function TextPage::findGaps() located at TextOutputDev.c in Xpdf 4.01, which can (for example) be triggered by sending a crafted pdf file to the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. |
Affected by 18 other vulnerabilities. |
|
VCID-jeet-y58g-aaan
Aliases: CVE-2019-9589 |
There is a NULL pointer dereference vulnerability in PSOutputDev::setupResources() located in PSOutputDev.cc in Xpdf 4.01. It can be triggered by sending a crafted pdf file to (for example) the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. |
Affected by 18 other vulnerabilities. |
|
VCID-jh9v-wkqe-aaah
Aliases: CVE-2018-8102 |
The JBIG2MMRDecoder::getBlackCode function in JBIG2Stream.cc in xpdf 4.00 allows attackers to launch denial of service (buffer over-read and application crash) via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-kd42-hh6x-aaaa
Aliases: CVE-2019-9200 |
A heap-based buffer underwrite exists in ImageStream::getLine() located at Stream.cc in Poppler 0.74.0 that can (for example) be triggered by sending a crafted PDF file to the pdfimages binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. |
Affected by 45 other vulnerabilities. |
|
VCID-kekt-g5b1-aaap
Aliases: CVE-2019-13281 |
In Xpdf 4.01.01, a heap-based buffer overflow could be triggered in DCTStream::decodeImage() in Stream.cc when writing to frameBuf memory. It can, for example, be triggered by sending a crafted PDF document to the pdftotext tool. It allows an attacker to use a crafted pdf file to cause Denial of Service, an information leak, or possibly unspecified other impact. |
Affected by 3 other vulnerabilities. |
|
VCID-mc2f-eepy-aaae
Aliases: CVE-2019-13287 |
In Xpdf 4.01.01, there is an out-of-bounds read vulnerability in the function SplashXPath::strokeAdjust() located at splash/SplashXPath.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure. This is related to CVE-2018-16368. |
Affected by 3 other vulnerabilities. |
|
VCID-mcrj-8d3e-aaae
Aliases: CVE-2019-10871 |
An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc. |
Affected by 0 other vulnerabilities. |
|
VCID-mvka-4fm6-aaac
Aliases: CVE-2019-13286 |
In Xpdf 4.01.01, there is a heap-based buffer over-read in the function JBIG2Stream::readTextRegionSeg() located at JBIG2Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure. |
Affected by 3 other vulnerabilities. |
|
VCID-n58j-eurx-aaad
Aliases: CVE-2018-21009 |
Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc. |
Affected by 37 other vulnerabilities. |
|
VCID-n9kg-frb8-aaag
Aliases: CVE-2019-14290 |
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA==6 case 2. |
Affected by 3 other vulnerabilities. |
|
VCID-nc7c-ykc4-aaah
Aliases: CVE-2019-9631 |
Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function. |
Affected by 39 other vulnerabilities. |
|
VCID-nefu-zbyw-aaab
Aliases: CVE-2019-14293 |
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA!=6 case 2. |
Affected by 3 other vulnerabilities. |
|
VCID-nhhq-egn9-aaam
Aliases: CVE-2019-13289 |
In Xpdf 4.01.01, there is a use-after-free vulnerability in the function JBIG2Stream::close() located at JBIG2Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. |
Affected by 3 other vulnerabilities. |
|
VCID-pe8n-m5ee-aaas
Aliases: CVE-2019-13282 |
In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in SampledFunction::transform in Function.cc when using a large index for samples. It can, for example, be triggered by sending a crafted PDF document to the pdftotext tool. It allows an attacker to use a crafted pdf file to cause Denial of Service or an information leak, or possibly have unspecified other impact. |
Affected by 3 other vulnerabilities. |
|
VCID-ppth-geez-aaab
Aliases: CVE-2018-20662 |
In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service (application crash caused by Object.h SIGABRT, because of a wrong return value from PDFDoc::setup) by crafting a PDF file in which an xref data structure is mishandled during extractPDFSubtype processing. |
Affected by 39 other vulnerabilities. |
|
VCID-qbgv-85dn-aaae
Aliases: CVE-2019-10025 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function ImageStream::ImageStream at Stream.cc for nBits. |
Affected by 18 other vulnerabilities. |
|
VCID-qj97-mzn8-aaab
Aliases: CVE-2019-9959 |
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo. |
Affected by 0 other vulnerabilities. |
|
VCID-qzuz-3mb1-aaaf
Aliases: CVE-2019-9878 |
There is an invalid memory access in the function GfxIndexedColorSpace::mapColorToBase() located in GfxState.cc in Xpdf 4.0.0, as used in pdfalto 0.2. It can be triggered by (for example) sending a crafted pdf file to the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. |
Affected by 18 other vulnerabilities. |
|
VCID-rays-s5rb-aaaa
Aliases: CVE-2019-11026 |
FontInfoScanner::scanFonts in FontInfo.cc in Poppler 0.75.0 has infinite recursion, leading to a call to the error function in Error.cc. |
Affected by 18 other vulnerabilities. |
|
VCID-rx3d-dbed-aaag
Aliases: CVE-2019-10022 |
An issue was discovered in Xpdf 4.01.01. There is a NULL pointer dereference in the function Gfx::opSetExtGState in Gfx.cc. |
Affected by 18 other vulnerabilities. |
|
VCID-sa8r-3pke-aaar
Aliases: CVE-2019-12515 |
There is an out-of-bounds read vulnerability in the function FlateStream::getChar() located at Stream.cc in Xpdf 4.01.01. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure or a denial of service. |
Affected by 18 other vulnerabilities. |
|
VCID-sabf-a6we-aaan
Aliases: CVE-2018-20650 |
A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a check for the dict data type, as demonstrated by use of the FileSpec class (in FileSpec.cc) in pdfdetach. |
Affected by 48 other vulnerabilities. |
|
VCID-sh31-2zmr-aaan
Aliases: CVE-2018-20551 |
A reachable Object::getString assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to construction of invalid rich media annotation assets in the AnnotRichMedia class in Annot.c. |
Affected by 46 other vulnerabilities. |
|
VCID-sw77-k3p5-aaae
Aliases: CVE-2019-12360 |
A stack-based buffer over-read exists in FoFiTrueType::dumpString in fofi/FoFiTrueType.cc in Xpdf 4.01.01. It can, for example, be triggered by sending crafted TrueType data in a PDF document to the pdftops tool. It might allow an attacker to cause Denial of Service or leak memory data into dump content. |
Affected by 18 other vulnerabilities. |
|
VCID-ts5u-qqb5-aaap
Aliases: CVE-2019-10872 |
An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function Splash::blitTransparent at splash/Splash.cc. |
Affected by 39 other vulnerabilities. |
|
VCID-uks5-g2nx-aaab
Aliases: CVE-2018-8106 |
The JPXStream::readTilePartData function in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service (heap-based buffer over-read and application crash) via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-v2re-m1mf-aaaf
Aliases: CVE-2019-12293 |
In Poppler through 0.76.1, there is a heap-based buffer over-read in JPXStream::init in JPEG2000Stream.cc via data with inconsistent heights or widths. |
Affected by 39 other vulnerabilities. |
|
VCID-v4te-z5wt-aaam
Aliases: CVE-2018-7454 |
A NULL pointer dereference in XFAForm::scanFields in XFAForm.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-v5ev-222n-aaap
Aliases: CVE-2017-14927 |
In Poppler 0.59.0, a NULL Pointer Dereference exists in the SplashOutputDev::type3D0() function in SplashOutputDev.cc via a crafted PDF document. |
Affected by 72 other vulnerabilities. |
|
VCID-va4g-2quz-aaan
Aliases: CVE-2018-19060 |
An issue was discovered in Poppler 0.71.0. There is a NULL pointer dereference in goo/GooString.h, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating a filename of an embedded file before constructing a save path. |
Affected by 50 other vulnerabilities. |
|
VCID-vgkx-ujm3-aaad
Aliases: CVE-2019-12957 |
In Xpdf 4.01.01, a buffer over-read could be triggered in FoFiType1C::convertToType1 in fofi/FoFiType1C.cc when the index number is larger than the charset array bounds. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It allows an attacker to use a crafted pdf file to cause Denial of Service or an information leak, or possibly have unspecified other impact. |
Affected by 18 other vulnerabilities. |
|
VCID-wgvv-tner-aaak
Aliases: CVE-2018-7174 |
An issue was discovered in xpdf 4.00. An infinite loop in XRef::Xref allows an attacker to cause denial of service because loop detection exists only for tables, not streams. |
Affected by 57 other vulnerabilities. |
|
VCID-wj23-73ss-aaar
Aliases: CVE-2019-14294 |
An issue was discovered in Xpdf 4.01.01. There is a use-after-free in the function JPXStream::fillReadBuf at JPXStream.cc, due to an out of bounds read. |
Affected by 3 other vulnerabilities. |
|
VCID-wtyk-qh4b-aaap
Aliases: CVE-2017-9865 |
The function GfxImageColorMap::getGray in GfxState.cc in Poppler 0.54.0 allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a crafted PDF document, related to missing color-map validation in ImageOutputDev.cc. |
Affected by 74 other vulnerabilities. |
|
VCID-wyvu-qmrm-aaae
Aliases: CVE-2019-14494 |
An issue was discovered in Poppler through 0.78.0. There is a divide-by-zero error in the function SplashOutputDev::tilingPatternFill at SplashOutputDev.cc. |
Affected by 38 other vulnerabilities. |
|
VCID-za23-jch3-aaar
Aliases: CVE-2018-20481 |
XRef::getEntry in XRef.cc in Poppler 0.72.0 mishandles unallocated XRef entries, which allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PDF document, when XRefEntry::setFlag in XRef.h is called from Parser::makeStream in Parser.cc. |
Affected by 48 other vulnerabilities. |
|
VCID-ze4x-wsez-aaaj
Aliases: CVE-2018-7173 |
A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an attacker to cause denial of service via a specific file due to inappropriate decoding. |
Affected by 57 other vulnerabilities. |
|
VCID-zmhg-f88t-aaaa
Aliases: CVE-2019-10019 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PSOutputDev::checkPageSlice at PSOutputDev.cc for nStripes. |
Affected by 18 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-2yfm-vzz1-aaag | The FoFiType1C::convertToType0 function in FoFiType1C.cc in Poppler 0.59.0 has a heap-based buffer over-read vulnerability if an out-of-bounds font dictionary index is encountered, which allows an attacker to launch a denial of service attack. |
CVE-2017-14976
|
| VCID-7qdr-gh5d-aaae | freedesktop.org libpoppler 0.60.1 fails to validate boundaries in TextPool::addWord, leading to overflow in subsequent calculations. |
CVE-2017-1000456
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|