Search for packages
| purl | pkg:ebuild/app-text/xpdf@4.04 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-96ga-uvqz-aaak | Xpdf prior to version 4.04 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readSymbolDictSeg() in JBIG2Stream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2021-30860 (Apple CoreGraphics). |
CVE-2022-38171
|
| VCID-9tbq-p77g-aaaa | Xpdf 4.02 allows stack consumption because of an incorrect subroutine reference in a Type 1C font charstring, related to the FoFiType1C::getOp() function. |
CVE-2020-35376
|
| VCID-9uar-6b2g-aaac | In Xpdf prior to 4.04, the DCT (JPEG) decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc. |
CVE-2022-24106
|
| VCID-dzzk-6fuh-aaaq | There is a Null Pointer Dereference vulnerability in the XFAScanner::scanNode() function in XFAScanner.cc in xpdf 4.03. |
CVE-2021-27548
|
| VCID-k66w-5nag-aaah | Xpdf prior to 4.04 lacked an integer overflow check in JPXStream.cc. |
CVE-2022-24107
|
| VCID-qv34-jp7c-aaac | In Xpdf 4.02, SplashOutputDev::endType3Char(GfxState *state) SplashOutputDev.cc:3079 is trying to use the freed `t3GlyphStack->cache`, which causes an `heap-use-after-free` problem. The codes of a previous fix for nested Type 3 characters wasn't correctly handling the case where a Type 3 char referred to another char in the same Type 3 font. |
CVE-2020-25725
|
| VCID-xz5m-zyac-aaae | xpdf 4.03 has heap buffer overflow in the function readXRefTable located in XRef.cc. An attacker can exploit this bug to cause a Denial of Service (Segmentation fault) or other unspecified effects by sending a crafted PDF file to the pdftoppm binary. |
CVE-2022-27135
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T12:46:14.552270+00:00 | Gentoo Importer | Fixing | VCID-96ga-uvqz-aaak | https://security.gentoo.org/glsa/202405-18 | 36.0.0 |
| 2025-03-28T12:46:14.541065+00:00 | Gentoo Importer | Fixing | VCID-xz5m-zyac-aaae | https://security.gentoo.org/glsa/202405-18 | 36.0.0 |
| 2025-03-28T12:46:14.529850+00:00 | Gentoo Importer | Fixing | VCID-k66w-5nag-aaah | https://security.gentoo.org/glsa/202405-18 | 36.0.0 |
| 2025-03-28T12:46:14.518484+00:00 | Gentoo Importer | Fixing | VCID-9uar-6b2g-aaac | https://security.gentoo.org/glsa/202405-18 | 36.0.0 |
| 2025-03-28T12:46:14.507354+00:00 | Gentoo Importer | Fixing | VCID-dzzk-6fuh-aaaq | https://security.gentoo.org/glsa/202405-18 | 36.0.0 |
| 2025-03-28T12:46:14.496398+00:00 | Gentoo Importer | Fixing | VCID-9tbq-p77g-aaaa | https://security.gentoo.org/glsa/202405-18 | 36.0.0 |
| 2025-03-28T12:46:14.485036+00:00 | Gentoo Importer | Fixing | VCID-qv34-jp7c-aaac | https://security.gentoo.org/glsa/202405-18 | 36.0.0 |
| 2024-09-18T07:41:00.558795+00:00 | Gentoo Importer | Fixing | VCID-96ga-uvqz-aaak | https://security.gentoo.org/glsa/202405-18 | 34.0.1 |
| 2024-09-18T07:41:00.540914+00:00 | Gentoo Importer | Fixing | VCID-xz5m-zyac-aaae | https://security.gentoo.org/glsa/202405-18 | 34.0.1 |
| 2024-09-18T07:41:00.523590+00:00 | Gentoo Importer | Fixing | VCID-k66w-5nag-aaah | https://security.gentoo.org/glsa/202405-18 | 34.0.1 |
| 2024-09-18T07:41:00.507326+00:00 | Gentoo Importer | Fixing | VCID-9uar-6b2g-aaac | https://security.gentoo.org/glsa/202405-18 | 34.0.1 |
| 2024-09-18T07:41:00.490796+00:00 | Gentoo Importer | Fixing | VCID-dzzk-6fuh-aaaq | https://security.gentoo.org/glsa/202405-18 | 34.0.1 |
| 2024-09-18T07:41:00.470408+00:00 | Gentoo Importer | Fixing | VCID-9tbq-p77g-aaaa | https://security.gentoo.org/glsa/202405-18 | 34.0.1 |
| 2024-09-18T07:41:00.451766+00:00 | Gentoo Importer | Fixing | VCID-qv34-jp7c-aaac | https://security.gentoo.org/glsa/202405-18 | 34.0.1 |
| 2024-05-07T06:19:29.266996+00:00 | Gentoo Importer | Fixing | VCID-96ga-uvqz-aaak | https://security.gentoo.org/glsa/202405-18 | 34.0.0rc4 |
| 2024-05-07T06:19:29.248272+00:00 | Gentoo Importer | Fixing | VCID-xz5m-zyac-aaae | https://security.gentoo.org/glsa/202405-18 | 34.0.0rc4 |
| 2024-05-07T06:19:29.228499+00:00 | Gentoo Importer | Fixing | VCID-k66w-5nag-aaah | https://security.gentoo.org/glsa/202405-18 | 34.0.0rc4 |
| 2024-05-07T06:19:29.212152+00:00 | Gentoo Importer | Fixing | VCID-9uar-6b2g-aaac | https://security.gentoo.org/glsa/202405-18 | 34.0.0rc4 |
| 2024-05-07T06:19:29.195246+00:00 | Gentoo Importer | Fixing | VCID-dzzk-6fuh-aaaq | https://security.gentoo.org/glsa/202405-18 | 34.0.0rc4 |
| 2024-05-07T06:19:29.179449+00:00 | Gentoo Importer | Fixing | VCID-9tbq-p77g-aaaa | https://security.gentoo.org/glsa/202405-18 | 34.0.0rc4 |
| 2024-05-07T06:19:29.164329+00:00 | Gentoo Importer | Fixing | VCID-qv34-jp7c-aaac | https://security.gentoo.org/glsa/202405-18 | 34.0.0rc4 |