VulnerableCode Package Details - pkg:alpm/archlinux/xpdf@4.01.01-1

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-4f2w-5h3r-aaac	A NULL pointer dereference in JPXStream::fillReadBuf in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml.	CVE-2018-7452
VCID-e3da-jf18-aaab	An out-of-bounds read in JPXStream::readTilePart in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml.	CVE-2018-7455
VCID-euhk-by2y-aaaa	An issue was discovered in xpdf 4.00. A NULL pointer dereference in readCodestream allows an attacker to cause denial of service via a JPX image with zero components.	CVE-2018-7175
VCID-eyva-cpym-aaah	Infinite recursion in AcroForm::scanField in AcroForm.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file due to lack of loop checking, as demonstrated by pdftohtml.	CVE-2018-7453
VCID-v4te-z5wt-aaam	A NULL pointer dereference in XFAForm::scanFields in XFAForm.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml.	CVE-2018-7454
VCID-wgvv-tner-aaak	An issue was discovered in xpdf 4.00. An infinite loop in XRef::Xref allows an attacker to cause denial of service because loop detection exists only for tables, not streams.	CVE-2018-7174
VCID-ze4x-wsez-aaaj	A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an attacker to cause denial of service via a specific file due to inappropriate decoding.	CVE-2018-7173

Vulnerability

Summary

Aliases

VCID-4f2w-5h3r-aaac

A NULL pointer dereference in JPXStream::fillReadBuf in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml.

CVE-2018-7452

VCID-e3da-jf18-aaab

An out-of-bounds read in JPXStream::readTilePart in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml.

CVE-2018-7455

VCID-euhk-by2y-aaaa

An issue was discovered in xpdf 4.00. A NULL pointer dereference in readCodestream allows an attacker to cause denial of service via a JPX image with zero components.

CVE-2018-7175

VCID-eyva-cpym-aaah

Infinite recursion in AcroForm::scanField in AcroForm.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file due to lack of loop checking, as demonstrated by pdftohtml.

CVE-2018-7453

VCID-v4te-z5wt-aaam

A NULL pointer dereference in XFAForm::scanFields in XFAForm.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml.

CVE-2018-7454

VCID-wgvv-tner-aaak

An issue was discovered in xpdf 4.00. An infinite loop in XRef::Xref allows an attacker to cause denial of service because loop detection exists only for tables, not streams.

CVE-2018-7174

VCID-ze4x-wsez-aaaj

A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an attacker to cause denial of service via a specific file due to inappropriate decoding.

CVE-2018-7173

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:47:06.578741+00:00	Arch Linux Importer	Fixing	VCID-ze4x-wsez-aaaj	https://security.archlinux.org/AVG-640	36.0.0
2025-03-28T07:47:06.559134+00:00	Arch Linux Importer	Fixing	VCID-wgvv-tner-aaak	https://security.archlinux.org/AVG-640	36.0.0
2025-03-28T07:47:06.540277+00:00	Arch Linux Importer	Fixing	VCID-euhk-by2y-aaaa	https://security.archlinux.org/AVG-640	36.0.0
2025-03-28T07:47:06.521650+00:00	Arch Linux Importer	Fixing	VCID-4f2w-5h3r-aaac	https://security.archlinux.org/AVG-640	36.0.0
2025-03-28T07:47:06.502165+00:00	Arch Linux Importer	Fixing	VCID-eyva-cpym-aaah	https://security.archlinux.org/AVG-640	36.0.0
2025-03-28T07:47:06.482960+00:00	Arch Linux Importer	Fixing	VCID-v4te-z5wt-aaam	https://security.archlinux.org/AVG-640	36.0.0
2025-03-28T07:47:06.464262+00:00	Arch Linux Importer	Fixing	VCID-e3da-jf18-aaab	https://security.archlinux.org/AVG-640	36.0.0
2024-09-18T02:02:30.495164+00:00	Arch Linux Importer	Fixing	VCID-ze4x-wsez-aaaj	https://security.archlinux.org/AVG-640	34.0.1
2024-09-18T02:02:30.474818+00:00	Arch Linux Importer	Fixing	VCID-wgvv-tner-aaak	https://security.archlinux.org/AVG-640	34.0.1
2024-09-18T02:02:30.453959+00:00	Arch Linux Importer	Fixing	VCID-euhk-by2y-aaaa	https://security.archlinux.org/AVG-640	34.0.1
2024-09-18T02:02:30.433837+00:00	Arch Linux Importer	Fixing	VCID-4f2w-5h3r-aaac	https://security.archlinux.org/AVG-640	34.0.1
2024-09-18T02:02:30.413459+00:00	Arch Linux Importer	Fixing	VCID-eyva-cpym-aaah	https://security.archlinux.org/AVG-640	34.0.1
2024-09-18T02:02:30.393624+00:00	Arch Linux Importer	Fixing	VCID-v4te-z5wt-aaam	https://security.archlinux.org/AVG-640	34.0.1
2024-09-18T02:02:30.372721+00:00	Arch Linux Importer	Fixing	VCID-e3da-jf18-aaab	https://security.archlinux.org/AVG-640	34.0.1
2024-01-03T22:28:31.108860+00:00	Arch Linux Importer	Fixing	VCID-ze4x-wsez-aaaj	https://security.archlinux.org/AVG-640	34.0.0rc1
2024-01-03T22:28:31.086958+00:00	Arch Linux Importer	Fixing	VCID-wgvv-tner-aaak	https://security.archlinux.org/AVG-640	34.0.0rc1
2024-01-03T22:28:31.064848+00:00	Arch Linux Importer	Fixing	VCID-euhk-by2y-aaaa	https://security.archlinux.org/AVG-640	34.0.0rc1
2024-01-03T22:28:31.042414+00:00	Arch Linux Importer	Fixing	VCID-4f2w-5h3r-aaac	https://security.archlinux.org/AVG-640	34.0.0rc1
2024-01-03T22:28:31.017949+00:00	Arch Linux Importer	Fixing	VCID-eyva-cpym-aaah	https://security.archlinux.org/AVG-640	34.0.0rc1
2024-01-03T22:28:30.995398+00:00	Arch Linux Importer	Fixing	VCID-v4te-z5wt-aaam	https://security.archlinux.org/AVG-640	34.0.0rc1
2024-01-03T22:28:30.973539+00:00	Arch Linux Importer	Fixing	VCID-e3da-jf18-aaab	https://security.archlinux.org/AVG-640	34.0.0rc1

2025-03-28T07:47:06.578741+00:00

Arch Linux Importer

Fixing