Search for packages
| purl | pkg:deb/ubuntu/poppler@0.5.1-0ubuntu7.6 |
| Next non-vulnerable version | 0.86.1-0ubuntu1 |
| Latest non-vulnerable version | 0.86.1-0ubuntu1 |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-19ru-ur7b-aaar
Aliases: CVE-2019-9903 |
PDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict marking, leading to stack consumption in the function Dict::find() located at Dict.cc, which can (for example) be triggered by passing a crafted pdf file to the pdfunite binary. |
Affected by 39 other vulnerabilities. |
|
VCID-1ect-mzfh-aaaf
Aliases: CVE-2010-3703 |
The PostScriptFunction::PostScriptFunction function in poppler/Function.cc in the PDF parser in poppler 0.8.7 and possibly other versions up to 0.15.1, and possibly other products, allows context-dependent attackers to cause a denial of service (crash) via a PDF file that triggers an uninitialized pointer dereference. |
Affected by 101 other vulnerabilities. |
|
VCID-2d5e-wcqp-aaac
Aliases: CVE-2017-9408 |
In Poppler 0.54.0, a memory leak vulnerability was found in the function Object::initArray in Object.cc, which allows attackers to cause a denial of service via a crafted file. |
Affected by 90 other vulnerabilities. Affected by 89 other vulnerabilities. |
|
VCID-2kaq-hk1h-aaad
Aliases: CVE-2019-12493 |
A stack-based buffer over-read exists in PostScriptFunction::transform in Function.cc in Xpdf 4.01.01 because GfxSeparationColorSpace and GfxDeviceNColorSpace mishandle tint transform functions. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It might allow an attacker to cause Denial of Service or leak memory data. |
Affected by 18 other vulnerabilities. |
|
VCID-2yfm-vzz1-aaag
Aliases: CVE-2017-14976 |
The FoFiType1C::convertToType0 function in FoFiType1C.cc in Poppler 0.59.0 has a heap-based buffer over-read vulnerability if an out-of-bounds font dictionary index is encountered, which allows an attacker to launch a denial of service attack. |
Affected by 95 other vulnerabilities. Affected by 76 other vulnerabilities. |
|
VCID-386t-15qg-aaad
Aliases: CVE-2018-8100 |
The JPXStream::readTilePart function in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-3ktt-caew-aaam
Aliases: CVE-2018-16646 |
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. |
Affected by 91 other vulnerabilities. Affected by 50 other vulnerabilities. |
|
VCID-3r4u-f5d8-aaad
Aliases: CVE-2018-18897 |
An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as demonstrated by pdftocairo. |
Affected by 39 other vulnerabilities. |
|
VCID-3u1q-4ysd-aaam
Aliases: CVE-2018-19059 |
An issue was discovered in Poppler 0.71.0. There is a out-of-bounds read in EmbFile::save2 in FileSpec.cc, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating embedded files before save attempts. |
Affected by 91 other vulnerabilities. Affected by 50 other vulnerabilities. |
|
VCID-418t-mu3d-aaah
Aliases: CVE-2019-14291 |
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA==6 case 3. |
Affected by 3 other vulnerabilities. |
|
VCID-41zd-d3us-aaac
Aliases: CVE-2009-0147 |
Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2Stream::readSymbolDictSeg, (2) JBIG2Stream::readSymbolDictSeg, and (3) JBIG2Stream::readGenericBitmap. |
Affected by 108 other vulnerabilities. |
|
VCID-44u8-b9b3-aaan
Aliases: CVE-2019-10023 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec at Function.cc for the psOpMod case. |
Affected by 18 other vulnerabilities. |
|
VCID-47ba-br5g-aaan
Aliases: CVE-2017-14977 |
The FoFiTrueType::getCFFBlock function in FoFiTrueType.cc in Poppler 0.59.0 has a NULL pointer dereference vulnerability due to lack of validation of a table pointer, which allows an attacker to launch a denial of service attack. |
Affected by 90 other vulnerabilities. Affected by 79 other vulnerabilities. |
|
VCID-4f2w-5h3r-aaac
Aliases: CVE-2018-7452 |
A NULL pointer dereference in JPXStream::fillReadBuf in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-4fwn-a8jd-aaak
Aliases: CVE-2009-0146 |
Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2SymbolDict::setBitmap and (2) JBIG2Stream::readSymbolDictSeg. |
Affected by 108 other vulnerabilities. |
|
VCID-4g39-b543-aaaj
Aliases: CVE-2019-13288 |
In Xpdf 4.01.01, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646. |
Affected by 3 other vulnerabilities. |
|
VCID-4ngn-7a7x-aaah
Aliases: CVE-2018-8104 |
The BufStream::lookChar function in Stream.cc in xpdf 4.00 allows attackers to launch denial of service (heap-based buffer over-read and application crash) via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-4qct-nfpa-aaam
Aliases: CVE-2018-8101 |
The JPXStream::inverseTransformLevel function in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service (heap-based buffer over-read and application crash) via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-4ufh-bmm7-aaag
Aliases: CVE-2019-14292 |
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA!=6 case 1. |
Affected by 3 other vulnerabilities. |
|
VCID-532m-essb-aaab
Aliases: CVE-2019-9588 |
There is an Invalid memory access in gAtomicIncrement() located at GMutex.h in Xpdf 4.01. It can be triggered by sending a crafted pdf file to (for example) the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. |
Affected by 18 other vulnerabilities. |
|
VCID-5z8e-s4fq-aaam
Aliases: CVE-2013-4474 |
Format string vulnerability in the extractPages function in utils/pdfseparate.cc in poppler before 0.24.3 allows remote attackers to cause a denial of service (crash) via format string specifiers in a destination filename. |
Affected by 98 other vulnerabilities. |
|
VCID-616s-f4d3-aaaj
Aliases: CVE-2015-8868 |
Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction function in Poppler before 0.40.0 allows remote attackers to cause a denial of service (memory corruption and crash) or possibly execute arbitrary code via an invalid blend mode in the ExtGState dictionary in a crafted PDF document. |
Affected by 96 other vulnerabilities. Affected by 95 other vulnerabilities. |
|
VCID-626r-az12-aaam
Aliases: CVE-2018-8103 |
The JBIG2Stream::readGenericBitmap function in JBIG2Stream.cc in xpdf 4.00 allows attackers to launch denial of service (heap-based buffer over-read and application crash) via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-6ap1-6xw4-aaaa
Aliases: CVE-2018-19058 |
An issue was discovered in Poppler 0.71.0. There is a reachable abort in Object.h, will lead to denial of service because EmbFile::save2 in FileSpec.cc lacks a stream check before saving an embedded file. |
Affected by 91 other vulnerabilities. Affected by 50 other vulnerabilities. |
|
VCID-6axh-vgu6-aaaa
Aliases: CVE-2009-0166 |
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers a free of uninitialized memory. |
Affected by 108 other vulnerabilities. |
|
VCID-6tf1-hk7q-aaak
Aliases: CVE-2018-8105 |
The JPXStream::fillReadBuf function in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service (heap-based buffer over-read and application crash) via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-7apf-u8e8-aaag
Aliases: CVE-2019-10021 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function ImageStream::ImageStream at Stream.cc for nComps. |
Affected by 18 other vulnerabilities. |
|
VCID-7qdr-gh5d-aaae
Aliases: CVE-2017-1000456 |
freedesktop.org libpoppler 0.60.1 fails to validate boundaries in TextPool::addWord, leading to overflow in subsequent calculations. |
Affected by 95 other vulnerabilities. Affected by 76 other vulnerabilities. |
|
VCID-91np-ztz7-aaaa
Aliases: CVE-2019-12958 |
In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in FoFiType1C::convertToType0 in fofi/FoFiType1C.cc when it is trying to access the second privateDicts array element, because the privateDicts array has only one element allocated. |
Affected by 72 other vulnerabilities. |
|
VCID-93wh-x2g8-aaam
Aliases: CVE-2009-1179 |
Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file. |
Affected by 108 other vulnerabilities. |
|
VCID-9swe-upds-aaae
Aliases: CVE-2019-7310 |
In Poppler 0.73.0, a heap-based buffer over-read (due to an integer signedness error in the XRef::getEntry function in XRef.cc) allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PDF document, as demonstrated by pdftocairo. |
Affected by 95 other vulnerabilities. Affected by 46 other vulnerabilities. |
|
VCID-a8jn-b1fg-aaaj
Aliases: CVE-2017-18267 |
The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler through 0.64.0 allows remote attackers to cause a denial of service (infinite recursion) via a crafted PDF file, as demonstrated by pdftops. |
Affected by 95 other vulnerabilities. Affected by 56 other vulnerabilities. |
|
VCID-abmw-cumc-aaaa
Aliases: CVE-2009-1182 |
Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file. |
Affected by 108 other vulnerabilities. |
|
VCID-admg-fjar-aaaa
Aliases: CVE-2017-2820 |
An exploitable integer overflow vulnerability exists in the JPEG 2000 image parsing functionality of freedesktop.org Poppler 0.53.0. A specially crafted PDF file can lead to an integer overflow causing out of bounds memory overwrite on the heap resulting in potential arbitrary code execution. To trigger this vulnerability, a victim must open the malicious PDF in an application using this library. |
Affected by 90 other vulnerabilities. Affected by 89 other vulnerabilities. |
|
VCID-amw7-cbg1-aaaj
Aliases: CVE-2020-27778 |
A flaw was found in Poppler in the way certain PDF files were converted into HTML. A remote attacker could exploit this flaw by providing a malicious PDF file that, when processed by the 'pdftohtml' program, would crash the application causing a denial of service. |
Affected by 0 other vulnerabilities. |
|
VCID-anuw-2c1z-aaah
Aliases: CVE-2017-14926 |
In Poppler 0.59.0, a NULL Pointer Dereference exists in AnnotRichMedia::Content::Content in Annot.cc via a crafted PDF document. |
Affected by 79 other vulnerabilities. |
|
VCID-aq9e-pt68-aaae
Aliases: CVE-2018-13988 |
Poppler through 0.62 contains an out of bounds read vulnerability due to an incorrect memory access that is not mapped in its memory space, as demonstrated by pdfunite. This can result in memory corruption and denial of service. This may be exploitable when a victim opens a specially crafted PDF file. |
Affected by 95 other vulnerabilities. Affected by 55 other vulnerabilities. |
|
VCID-b78c-c1dj-aaap
Aliases: CVE-2019-10024 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function Splash::scaleImageYuXu at Splash.cc for y Bresenham parameters. |
Affected by 18 other vulnerabilities. |
|
VCID-cbnm-75mk-aaap
Aliases: CVE-2018-8107 |
The JPXStream::close function in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service (heap-based buffer over-read and application crash) via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-d41f-2y3y-aaag
Aliases: CVE-2017-9083 |
poppler 0.54.0, as used in Evince and other products, has a NULL pointer dereference in the JPXStream::readUByte function in JPXStream.cc. For example, the perf_test utility will crash (segmentation fault) when parsing an invalid PDF file. |
Affected by 90 other vulnerabilities. Affected by 75 other vulnerabilities. |
|
VCID-dbdn-e98c-aaaq
Aliases: CVE-2017-14617 |
In Poppler 0.59.0, a floating point exception occurs in the ImageStream class in Stream.cc, which may lead to a potential attack when handling malicious PDF files. |
Affected by 90 other vulnerabilities. Affected by 79 other vulnerabilities. |
|
VCID-dg62-43rh-aaaq
Aliases: CVE-2009-0799 |
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers an out-of-bounds read. |
Affected by 108 other vulnerabilities. |
|
VCID-dhuy-8nen-aaam
Aliases: CVE-2018-19149 |
Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment. |
Affected by 91 other vulnerabilities. Affected by 54 other vulnerabilities. |
|
VCID-dpqp-4rff-aaar
Aliases: CVE-2019-13291 |
In Xpdf 4.01.01, there is a heap-based buffer over-read in the function DCTStream::readScan() located at Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It might allow an attacker to cause Information Disclosure. |
Affected by 3 other vulnerabilities. |
|
VCID-dptx-mrw5-aaak
Aliases: CVE-2009-0800 |
Multiple "input validation flaws" in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file. |
Affected by 108 other vulnerabilities. |
|
VCID-e3da-jf18-aaab
Aliases: CVE-2018-7455 |
An out-of-bounds read in JPXStream::readTilePart in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-eedj-x3gz-aaan
Aliases: CVE-2013-7296 |
The JBIG2Stream::readSegments method in JBIG2Stream.cc in Poppler before 0.24.5 does not use the correct specifier within a format string, which allows context-dependent attackers to cause a denial of service (segmentation fault and application crash) via a crafted PDF file. |
Affected by 97 other vulnerabilities. |
|
VCID-emyh-9z9x-aaas
Aliases: CVE-2019-10020 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function Splash::scaleImageYuXu at Splash.cc for x Bresenham parameters. |
Affected by 18 other vulnerabilities. |
|
VCID-euhk-by2y-aaaa
Aliases: CVE-2018-7175 |
An issue was discovered in xpdf 4.00. A NULL pointer dereference in readCodestream allows an attacker to cause denial of service via a JPX image with zero components. |
Affected by 57 other vulnerabilities. |
|
VCID-eyva-cpym-aaah
Aliases: CVE-2018-7453 |
Infinite recursion in AcroForm::scanField in AcroForm.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file due to lack of loop checking, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-ezr1-nnm8-aaab
Aliases: CVE-2017-14975 |
The FoFiType1C::convertToType0 function in FoFiType1C.cc in Poppler 0.59.0 has a NULL pointer dereference vulnerability because a data structure is not initialized, which allows an attacker to launch a denial of service attack. |
Affected by 90 other vulnerabilities. Affected by 79 other vulnerabilities. |
|
VCID-fhmx-xq55-aaae
Aliases: CVE-2019-14289 |
An issue was discovered in Xpdf 4.01.01. There is an integer overflow in the function JBIG2Bitmap::combine at JBIG2Stream.cc for the "multiple bytes per line" case. |
Affected by 3 other vulnerabilities. |
|
VCID-fss2-ry88-aaan
Aliases: CVE-2009-1180 |
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a free of invalid data. |
Affected by 108 other vulnerabilities. |
|
VCID-gapd-e9z5-aaan
Aliases: CVE-2019-10018 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec at Function.cc for the psOpIdiv case. |
Affected by 18 other vulnerabilities. |
|
VCID-gyp4-ethr-aaab
Aliases: CVE-2019-13283 |
In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in strncpy from FoFiType1::parse in fofi/FoFiType1.cc because it does not ensure the source string has a valid length before making a fixed-length copy. It can, for example, be triggered by sending a crafted PDF document to the pdftotext tool. It allows an attacker to use a crafted pdf file to cause Denial of Service or an information leak, or possibly have unspecified other impact. |
Affected by 3 other vulnerabilities. |
|
VCID-h26e-539m-aaam
Aliases: CVE-2019-9587 |
There is a stack consumption issue in md5Round1() located in Decrypt.cc in Xpdf 4.01. It can be triggered by sending a crafted pdf file to (for example) the pdfimages binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. This is related to Catalog::countPageTree. |
Affected by 18 other vulnerabilities. |
|
VCID-h2fe-jfpd-aaaa
Aliases: CVE-2017-9775 |
Stack buffer overflow in GfxState.cc in pdftocairo in Poppler before 0.56 allows remote attackers to cause a denial of service (application crash) via a crafted PDF document. |
Affected by 90 other vulnerabilities. Affected by 89 other vulnerabilities. |
|
VCID-h6h5-gf5g-aaam
Aliases: CVE-2009-1183 |
The JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service (infinite loop and hang) via a crafted PDF file. |
Affected by 108 other vulnerabilities. |
|
VCID-h76j-y5d5-aaak
Aliases: CVE-2019-14288 |
An issue was discovered in Xpdf 4.01.01. There is an Integer overflow in the function JBIG2Bitmap::combine at JBIG2Stream.cc for the "one byte per line" case. |
Affected by 3 other vulnerabilities. |
|
VCID-hhn7-9kaa-aaaa
Aliases: CVE-2017-7511 |
poppler since version 0.17.3 has been vulnerable to NULL pointer dereference in pdfunite triggered by specially crafted documents. |
Affected by 90 other vulnerabilities. Affected by 89 other vulnerabilities. |
|
VCID-hjdv-u67x-aaab
Aliases: CVE-2017-15565 |
In Poppler 0.59.0, a NULL Pointer Dereference exists in the GfxImageColorMap::getGrayLine() function in GfxState.cc via a crafted PDF document. |
Affected by 96 other vulnerabilities. Affected by 78 other vulnerabilities. |
|
VCID-hkb8-2qw6-aaaj
Aliases: CVE-2019-10026 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec in Function.cc for the psOpRoll case. |
Affected by 18 other vulnerabilities. |
|
VCID-hn14-qtpz-aaaq
Aliases: CVE-2019-9877 |
There is an invalid memory access vulnerability in the function TextPage::findGaps() located at TextOutputDev.c in Xpdf 4.01, which can (for example) be triggered by sending a crafted pdf file to the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. |
Affected by 18 other vulnerabilities. |
|
VCID-jb6m-dtzp-aaaa
Aliases: CVE-2017-9776 |
Integer overflow leading to Heap buffer overflow in JBIG2Stream.cc in pdftocairo in Poppler before 0.56 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PDF document. |
Affected by 90 other vulnerabilities. Affected by 79 other vulnerabilities. |
|
VCID-jeet-y58g-aaan
Aliases: CVE-2019-9589 |
There is a NULL pointer dereference vulnerability in PSOutputDev::setupResources() located in PSOutputDev.cc in Xpdf 4.01. It can be triggered by sending a crafted pdf file to (for example) the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. |
Affected by 18 other vulnerabilities. |
|
VCID-jh9v-wkqe-aaah
Aliases: CVE-2018-8102 |
The JBIG2MMRDecoder::getBlackCode function in JBIG2Stream.cc in xpdf 4.00 allows attackers to launch denial of service (buffer over-read and application crash) via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-jjz4-59qz-aaar
Aliases: CVE-2009-3608 |
Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow. |
Affected by 104 other vulnerabilities. |
|
VCID-jmc2-nmwe-aaas
Aliases: CVE-2017-14928 |
In Poppler 0.59.0, a NULL Pointer Dereference exists in AnnotRichMedia::Configuration::Configuration in Annot.cc via a crafted PDF document. |
Affected by 79 other vulnerabilities. |
|
VCID-kd42-hh6x-aaaa
Aliases: CVE-2019-9200 |
A heap-based buffer underwrite exists in ImageStream::getLine() located at Stream.cc in Poppler 0.74.0 that can (for example) be triggered by sending a crafted PDF file to the pdfimages binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. |
Affected by 95 other vulnerabilities. Affected by 45 other vulnerabilities. |
|
VCID-kekt-g5b1-aaap
Aliases: CVE-2019-13281 |
In Xpdf 4.01.01, a heap-based buffer overflow could be triggered in DCTStream::decodeImage() in Stream.cc when writing to frameBuf memory. It can, for example, be triggered by sending a crafted PDF document to the pdftotext tool. It allows an attacker to use a crafted pdf file to cause Denial of Service, an information leak, or possibly unspecified other impact. |
Affected by 3 other vulnerabilities. |
|
VCID-kyr7-mzsb-aaas
Aliases: CVE-2017-14519 |
In Poppler 0.59.0, memory corruption occurs in a call to Object::streamGetChar in Object.h after a repeating series of Gfx::display, Gfx::go, Gfx::execOp, Gfx::opShowText, and Gfx::doShowText calls (aka a Gfx.cc infinite loop). |
Affected by 96 other vulnerabilities. Affected by 88 other vulnerabilities. |
|
VCID-m1nt-jdfq-aaas
Aliases: CVE-2012-2142 |
The error function in Error.cc in poppler before 0.21.4 allows remote attackers to execute arbitrary commands via a PDF containing an escape sequence for a terminal emulator. |
Affected by 100 other vulnerabilities. |
|
VCID-mc2f-eepy-aaae
Aliases: CVE-2019-13287 |
In Xpdf 4.01.01, there is an out-of-bounds read vulnerability in the function SplashXPath::strokeAdjust() located at splash/SplashXPath.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure. This is related to CVE-2018-16368. |
Affected by 3 other vulnerabilities. |
|
VCID-mcrj-8d3e-aaae
Aliases: CVE-2019-10871 |
An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc. |
Affected by 0 other vulnerabilities. |
|
VCID-mvka-4fm6-aaac
Aliases: CVE-2019-13286 |
In Xpdf 4.01.01, there is a heap-based buffer over-read in the function JBIG2Stream::readTextRegionSeg() located at JBIG2Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure. |
Affected by 3 other vulnerabilities. |
|
VCID-n58j-eurx-aaad
Aliases: CVE-2018-21009 |
Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc. |
Affected by 37 other vulnerabilities. |
|
VCID-n9kg-frb8-aaag
Aliases: CVE-2019-14290 |
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA==6 case 2. |
Affected by 3 other vulnerabilities. |
|
VCID-nc7c-ykc4-aaah
Aliases: CVE-2019-9631 |
Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function. |
Affected by 39 other vulnerabilities. |
|
VCID-nefu-zbyw-aaab
Aliases: CVE-2019-14293 |
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA!=6 case 2. |
Affected by 3 other vulnerabilities. |
|
VCID-nhhq-egn9-aaam
Aliases: CVE-2019-13289 |
In Xpdf 4.01.01, there is a use-after-free vulnerability in the function JBIG2Stream::close() located at JBIG2Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. |
Affected by 3 other vulnerabilities. |
|
VCID-pe8n-m5ee-aaas
Aliases: CVE-2019-13282 |
In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in SampledFunction::transform in Function.cc when using a large index for samples. It can, for example, be triggered by sending a crafted PDF document to the pdftotext tool. It allows an attacker to use a crafted pdf file to cause Denial of Service or an information leak, or possibly have unspecified other impact. |
Affected by 3 other vulnerabilities. |
|
VCID-ppth-geez-aaab
Aliases: CVE-2018-20662 |
In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service (application crash caused by Object.h SIGABRT, because of a wrong return value from PDFDoc::setup) by crafting a PDF file in which an xref data structure is mishandled during extractPDFSubtype processing. |
Affected by 39 other vulnerabilities. |
|
VCID-pv6f-qxmt-aaas
Aliases: CVE-2009-3609 |
Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read. |
Affected by 104 other vulnerabilities. |
|
VCID-pwf4-hn1w-aaae
Aliases: CVE-2009-1181 |
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers a NULL pointer dereference. |
Affected by 108 other vulnerabilities. |
|
VCID-qbgv-85dn-aaae
Aliases: CVE-2019-10025 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function ImageStream::ImageStream at Stream.cc for nBits. |
Affected by 18 other vulnerabilities. |
|
VCID-qbky-5grj-aaah
Aliases: CVE-2010-3702 |
The Gfx::getPos function in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, CUPS, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service (crash) via unknown vectors that trigger an uninitialized pointer dereference. |
Affected by 101 other vulnerabilities. |
|
VCID-qhcr-c3yq-aaas
Aliases: CVE-2018-10768 |
There is a NULL pointer dereference in the AnnotPath::getCoordsLength function in Annot.h in an Ubuntu package for Poppler 0.24.5. A crafted input will lead to a remote denial of service attack. Later Ubuntu packages such as for Poppler 0.41.0 are not affected. |
Affected by 95 other vulnerabilities. |
|
VCID-qj97-mzn8-aaab
Aliases: CVE-2019-9959 |
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo. |
Affected by 0 other vulnerabilities. |
|
VCID-qzuz-3mb1-aaaf
Aliases: CVE-2019-9878 |
There is an invalid memory access in the function GfxIndexedColorSpace::mapColorToBase() located in GfxState.cc in Xpdf 4.0.0, as used in pdfalto 0.2. It can be triggered by (for example) sending a crafted pdf file to the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. |
Affected by 18 other vulnerabilities. |
|
VCID-r3wy-bs6f-aaab
Aliases: CVE-2017-9406 |
In Poppler 0.54.0, a memory leak vulnerability was found in the function gmalloc in gmem.cc, which allows attackers to cause a denial of service via a crafted file. |
Affected by 90 other vulnerabilities. Affected by 89 other vulnerabilities. |
|
VCID-rays-s5rb-aaaa
Aliases: CVE-2019-11026 |
FontInfoScanner::scanFonts in FontInfo.cc in Poppler 0.75.0 has infinite recursion, leading to a call to the error function in Error.cc. |
Affected by 18 other vulnerabilities. |
|
VCID-rejz-9crh-aaag
Aliases: CVE-2009-1188 |
Integer overflow in the JBIG2 decoding feature in the SplashBitmap::SplashBitmap function in SplashBitmap.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.10.6, as used in GPdf and kdegraphics KPDF, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document. |
Affected by 108 other vulnerabilities. |
|
VCID-rx3d-dbed-aaag
Aliases: CVE-2019-10022 |
An issue was discovered in Xpdf 4.01.01. There is a NULL pointer dereference in the function Gfx::opSetExtGState in Gfx.cc. |
Affected by 18 other vulnerabilities. |
|
VCID-sa8r-3pke-aaar
Aliases: CVE-2019-12515 |
There is an out-of-bounds read vulnerability in the function FlateStream::getChar() located at Stream.cc in Xpdf 4.01.01. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure or a denial of service. |
Affected by 18 other vulnerabilities. |
|
VCID-sabf-a6we-aaan
Aliases: CVE-2018-20650 |
A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a check for the dict data type, as demonstrated by use of the FileSpec class (in FileSpec.cc) in pdfdetach. |
Affected by 94 other vulnerabilities. Affected by 48 other vulnerabilities. |
|
VCID-sh31-2zmr-aaan
Aliases: CVE-2018-20551 |
A reachable Object::getString assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to construction of invalid rich media annotation assets in the AnnotRichMedia class in Annot.c. |
Affected by 46 other vulnerabilities. |
|
VCID-sw77-k3p5-aaae
Aliases: CVE-2019-12360 |
A stack-based buffer over-read exists in FoFiTrueType::dumpString in fofi/FoFiTrueType.cc in Xpdf 4.01.01. It can, for example, be triggered by sending crafted TrueType data in a PDF document to the pdftops tool. It might allow an attacker to cause Denial of Service or leak memory data into dump content. |
Affected by 18 other vulnerabilities. |
|
VCID-sxrp-vxyu-aaap
Aliases: CVE-2009-0195 |
Heap-based buffer overflow in Xpdf 3.02pl2 and earlier, CUPS 1.3.9, and probably other products, allows remote attackers to execute arbitrary code via a PDF file with crafted JBIG2 symbol dictionary segments. |
Affected by 108 other vulnerabilities. |
|
VCID-ts5u-qqb5-aaap
Aliases: CVE-2019-10872 |
An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function Splash::blitTransparent at splash/Splash.cc. |
Affected by 39 other vulnerabilities. |
|
VCID-u2d6-cmjt-aaaa
Aliases: CVE-2013-4473 |
Stack-based buffer overflow in the extractPages function in utils/pdfseparate.cc in poppler before 0.24.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a source filename. |
Affected by 98 other vulnerabilities. |
|
VCID-udy3-cmqu-aaaq
Aliases: CVE-2009-3604 |
The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document that triggers a NULL pointer dereference or a heap-based buffer overflow. |
Affected by 104 other vulnerabilities. |
|
VCID-uks5-g2nx-aaab
Aliases: CVE-2018-8106 |
The JPXStream::readTilePartData function in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service (heap-based buffer over-read and application crash) via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-v2re-m1mf-aaaf
Aliases: CVE-2019-12293 |
In Poppler through 0.76.1, there is a heap-based buffer over-read in JPXStream::init in JPEG2000Stream.cc via data with inconsistent heights or widths. |
Affected by 39 other vulnerabilities. |
|
VCID-v4te-z5wt-aaam
Aliases: CVE-2018-7454 |
A NULL pointer dereference in XFAForm::scanFields in XFAForm.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml. |
Affected by 57 other vulnerabilities. |
|
VCID-v5ev-222n-aaap
Aliases: CVE-2017-14927 |
In Poppler 0.59.0, a NULL Pointer Dereference exists in the SplashOutputDev::type3D0() function in SplashOutputDev.cc via a crafted PDF document. |
Affected by 72 other vulnerabilities. |
|
VCID-va4g-2quz-aaan
Aliases: CVE-2018-19060 |
An issue was discovered in Poppler 0.71.0. There is a NULL pointer dereference in goo/GooString.h, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating a filename of an embedded file before constructing a save path. |
Affected by 91 other vulnerabilities. Affected by 50 other vulnerabilities. |
|
VCID-vgkx-ujm3-aaad
Aliases: CVE-2019-12957 |
In Xpdf 4.01.01, a buffer over-read could be triggered in FoFiType1C::convertToType1 in fofi/FoFiType1C.cc when the index number is larger than the charset array bounds. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It allows an attacker to use a crafted pdf file to cause Denial of Service or an information leak, or possibly have unspecified other impact. |
Affected by 18 other vulnerabilities. |
|
VCID-w5qp-7swu-aaar
Aliases: CVE-2017-14518 |
In Poppler 0.59.0, a floating point exception exists in the isImageInterpolationRequired() function in Splash.cc via a crafted PDF document. |
Affected by 90 other vulnerabilities. Affected by 79 other vulnerabilities. |
|
VCID-wgvv-tner-aaak
Aliases: CVE-2018-7174 |
An issue was discovered in xpdf 4.00. An infinite loop in XRef::Xref allows an attacker to cause denial of service because loop detection exists only for tables, not streams. |
Affected by 57 other vulnerabilities. |
|
VCID-wj23-73ss-aaar
Aliases: CVE-2019-14294 |
An issue was discovered in Xpdf 4.01.01. There is a use-after-free in the function JPXStream::fillReadBuf at JPXStream.cc, due to an out of bounds read. |
Affected by 3 other vulnerabilities. |
|
VCID-wtyk-qh4b-aaap
Aliases: CVE-2017-9865 |
The function GfxImageColorMap::getGray in GfxState.cc in Poppler 0.54.0 allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a crafted PDF document, related to missing color-map validation in ImageOutputDev.cc. |
Affected by 74 other vulnerabilities. |
|
VCID-wyvu-qmrm-aaae
Aliases: CVE-2019-14494 |
An issue was discovered in Poppler through 0.78.0. There is a divide-by-zero error in the function SplashOutputDev::tilingPatternFill at SplashOutputDev.cc. |
Affected by 38 other vulnerabilities. |
|
VCID-xfmq-sn7c-aaap
Aliases: CVE-2017-14520 |
In Poppler 0.59.0, a floating point exception occurs in Splash::scaleImageYuXd() in Splash.cc, which may lead to a potential attack when handling malicious PDF files. |
Affected by 90 other vulnerabilities. Affected by 79 other vulnerabilities. |
|
VCID-yghy-9kyk-aaaq
Aliases: CVE-2017-7515 |
poppler through version 0.55.0 is vulnerable to an uncontrolled recursion in pdfunite resulting into potential denial-of-service. |
Affected by 90 other vulnerabilities. Affected by 89 other vulnerabilities. |
|
VCID-yrqn-c11w-aaas
Aliases: CVE-2009-3603 |
Integer overflow in the SplashBitmap::SplashBitmap function in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1 might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2009-1188. |
Affected by 104 other vulnerabilities. |
|
VCID-ytzz-r4np-aaar
Aliases: CVE-2017-14929 |
In Poppler 0.59.0, memory corruption occurs in a call to Object::dictLookup() in Object.h after a repeating series of Gfx::display, Gfx::go, Gfx::execOp, Gfx::opFill, Gfx::doPatternFill, Gfx::doTilingPatternFill and Gfx::drawForm calls (aka a Gfx.cc infinite loop), a different vulnerability than CVE-2017-14519. |
Affected by 90 other vulnerabilities. Affected by 79 other vulnerabilities. |
|
VCID-za23-jch3-aaar
Aliases: CVE-2018-20481 |
XRef::getEntry in XRef.cc in Poppler 0.72.0 mishandles unallocated XRef entries, which allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PDF document, when XRefEntry::setFlag in XRef.h is called from Parser::makeStream in Parser.cc. |
Affected by 94 other vulnerabilities. Affected by 48 other vulnerabilities. |
|
VCID-ze4x-wsez-aaaj
Aliases: CVE-2018-7173 |
A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an attacker to cause denial of service via a specific file due to inappropriate decoding. |
Affected by 57 other vulnerabilities. |
|
VCID-zg5j-cxdf-aaac
Aliases: CVE-2010-3704 |
The FoFiType1::parse function in fofi/FoFiType1.cc in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a PDF file with a crafted PostScript Type1 font that contains a negative array index, which bypasses input validation and triggers memory corruption. |
Affected by 101 other vulnerabilities. |
|
VCID-zmhg-f88t-aaaa
Aliases: CVE-2019-10019 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PSOutputDev::checkPageSlice at PSOutputDev.cc for nStripes. |
Affected by 18 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|