Search for packages
| purl | pkg:deb/ubuntu/poppler@0.62.0-2ubuntu2.9 |
| Next non-vulnerable version | 0.86.1-0ubuntu1 |
| Latest non-vulnerable version | 0.86.1-0ubuntu1 |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2kaq-hk1h-aaad
Aliases: CVE-2019-12493 |
A stack-based buffer over-read exists in PostScriptFunction::transform in Function.cc in Xpdf 4.01.01 because GfxSeparationColorSpace and GfxDeviceNColorSpace mishandle tint transform functions. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It might allow an attacker to cause Denial of Service or leak memory data. |
Affected by 18 other vulnerabilities. |
|
VCID-418t-mu3d-aaah
Aliases: CVE-2019-14291 |
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA==6 case 3. |
Affected by 3 other vulnerabilities. |
|
VCID-44u8-b9b3-aaan
Aliases: CVE-2019-10023 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec at Function.cc for the psOpMod case. |
Affected by 18 other vulnerabilities. |
|
VCID-4g39-b543-aaaj
Aliases: CVE-2019-13288 |
In Xpdf 4.01.01, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646. |
Affected by 3 other vulnerabilities. |
|
VCID-4ufh-bmm7-aaag
Aliases: CVE-2019-14292 |
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA!=6 case 1. |
Affected by 3 other vulnerabilities. |
|
VCID-532m-essb-aaab
Aliases: CVE-2019-9588 |
There is an Invalid memory access in gAtomicIncrement() located at GMutex.h in Xpdf 4.01. It can be triggered by sending a crafted pdf file to (for example) the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. |
Affected by 18 other vulnerabilities. |
|
VCID-7apf-u8e8-aaag
Aliases: CVE-2019-10021 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function ImageStream::ImageStream at Stream.cc for nComps. |
Affected by 18 other vulnerabilities. |
|
VCID-amw7-cbg1-aaaj
Aliases: CVE-2020-27778 |
A flaw was found in Poppler in the way certain PDF files were converted into HTML. A remote attacker could exploit this flaw by providing a malicious PDF file that, when processed by the 'pdftohtml' program, would crash the application causing a denial of service. |
Affected by 0 other vulnerabilities. |
|
VCID-b78c-c1dj-aaap
Aliases: CVE-2019-10024 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function Splash::scaleImageYuXu at Splash.cc for y Bresenham parameters. |
Affected by 18 other vulnerabilities. |
|
VCID-dpqp-4rff-aaar
Aliases: CVE-2019-13291 |
In Xpdf 4.01.01, there is a heap-based buffer over-read in the function DCTStream::readScan() located at Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It might allow an attacker to cause Information Disclosure. |
Affected by 3 other vulnerabilities. |
|
VCID-emyh-9z9x-aaas
Aliases: CVE-2019-10020 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function Splash::scaleImageYuXu at Splash.cc for x Bresenham parameters. |
Affected by 18 other vulnerabilities. |
|
VCID-fhmx-xq55-aaae
Aliases: CVE-2019-14289 |
An issue was discovered in Xpdf 4.01.01. There is an integer overflow in the function JBIG2Bitmap::combine at JBIG2Stream.cc for the "multiple bytes per line" case. |
Affected by 3 other vulnerabilities. |
|
VCID-gapd-e9z5-aaan
Aliases: CVE-2019-10018 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec at Function.cc for the psOpIdiv case. |
Affected by 18 other vulnerabilities. |
|
VCID-gyp4-ethr-aaab
Aliases: CVE-2019-13283 |
In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in strncpy from FoFiType1::parse in fofi/FoFiType1.cc because it does not ensure the source string has a valid length before making a fixed-length copy. It can, for example, be triggered by sending a crafted PDF document to the pdftotext tool. It allows an attacker to use a crafted pdf file to cause Denial of Service or an information leak, or possibly have unspecified other impact. |
Affected by 3 other vulnerabilities. |
|
VCID-h26e-539m-aaam
Aliases: CVE-2019-9587 |
There is a stack consumption issue in md5Round1() located in Decrypt.cc in Xpdf 4.01. It can be triggered by sending a crafted pdf file to (for example) the pdfimages binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. This is related to Catalog::countPageTree. |
Affected by 18 other vulnerabilities. |
|
VCID-h76j-y5d5-aaak
Aliases: CVE-2019-14288 |
An issue was discovered in Xpdf 4.01.01. There is an Integer overflow in the function JBIG2Bitmap::combine at JBIG2Stream.cc for the "one byte per line" case. |
Affected by 3 other vulnerabilities. |
|
VCID-hkb8-2qw6-aaaj
Aliases: CVE-2019-10026 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec in Function.cc for the psOpRoll case. |
Affected by 18 other vulnerabilities. |
|
VCID-hn14-qtpz-aaaq
Aliases: CVE-2019-9877 |
There is an invalid memory access vulnerability in the function TextPage::findGaps() located at TextOutputDev.c in Xpdf 4.01, which can (for example) be triggered by sending a crafted pdf file to the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. |
Affected by 18 other vulnerabilities. |
|
VCID-jeet-y58g-aaan
Aliases: CVE-2019-9589 |
There is a NULL pointer dereference vulnerability in PSOutputDev::setupResources() located in PSOutputDev.cc in Xpdf 4.01. It can be triggered by sending a crafted pdf file to (for example) the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. |
Affected by 18 other vulnerabilities. |
|
VCID-kekt-g5b1-aaap
Aliases: CVE-2019-13281 |
In Xpdf 4.01.01, a heap-based buffer overflow could be triggered in DCTStream::decodeImage() in Stream.cc when writing to frameBuf memory. It can, for example, be triggered by sending a crafted PDF document to the pdftotext tool. It allows an attacker to use a crafted pdf file to cause Denial of Service, an information leak, or possibly unspecified other impact. |
Affected by 3 other vulnerabilities. |
|
VCID-mc2f-eepy-aaae
Aliases: CVE-2019-13287 |
In Xpdf 4.01.01, there is an out-of-bounds read vulnerability in the function SplashXPath::strokeAdjust() located at splash/SplashXPath.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure. This is related to CVE-2018-16368. |
Affected by 3 other vulnerabilities. |
|
VCID-mcrj-8d3e-aaae
Aliases: CVE-2019-10871 |
An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc. |
Affected by 0 other vulnerabilities. |
|
VCID-mvka-4fm6-aaac
Aliases: CVE-2019-13286 |
In Xpdf 4.01.01, there is a heap-based buffer over-read in the function JBIG2Stream::readTextRegionSeg() located at JBIG2Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure. |
Affected by 3 other vulnerabilities. |
|
VCID-n58j-eurx-aaad
Aliases: CVE-2018-21009 |
Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc. |
Affected by 37 other vulnerabilities. |
|
VCID-n9kg-frb8-aaag
Aliases: CVE-2019-14290 |
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA==6 case 2. |
Affected by 3 other vulnerabilities. |
|
VCID-nefu-zbyw-aaab
Aliases: CVE-2019-14293 |
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA!=6 case 2. |
Affected by 3 other vulnerabilities. |
|
VCID-nhhq-egn9-aaam
Aliases: CVE-2019-13289 |
In Xpdf 4.01.01, there is a use-after-free vulnerability in the function JBIG2Stream::close() located at JBIG2Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. |
Affected by 3 other vulnerabilities. |
|
VCID-pe8n-m5ee-aaas
Aliases: CVE-2019-13282 |
In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in SampledFunction::transform in Function.cc when using a large index for samples. It can, for example, be triggered by sending a crafted PDF document to the pdftotext tool. It allows an attacker to use a crafted pdf file to cause Denial of Service or an information leak, or possibly have unspecified other impact. |
Affected by 3 other vulnerabilities. |
|
VCID-qbgv-85dn-aaae
Aliases: CVE-2019-10025 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function ImageStream::ImageStream at Stream.cc for nBits. |
Affected by 18 other vulnerabilities. |
|
VCID-qj97-mzn8-aaab
Aliases: CVE-2019-9959 |
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo. |
Affected by 0 other vulnerabilities. |
|
VCID-qzuz-3mb1-aaaf
Aliases: CVE-2019-9878 |
There is an invalid memory access in the function GfxIndexedColorSpace::mapColorToBase() located in GfxState.cc in Xpdf 4.0.0, as used in pdfalto 0.2. It can be triggered by (for example) sending a crafted pdf file to the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact. |
Affected by 18 other vulnerabilities. |
|
VCID-rays-s5rb-aaaa
Aliases: CVE-2019-11026 |
FontInfoScanner::scanFonts in FontInfo.cc in Poppler 0.75.0 has infinite recursion, leading to a call to the error function in Error.cc. |
Affected by 18 other vulnerabilities. |
|
VCID-rx3d-dbed-aaag
Aliases: CVE-2019-10022 |
An issue was discovered in Xpdf 4.01.01. There is a NULL pointer dereference in the function Gfx::opSetExtGState in Gfx.cc. |
Affected by 18 other vulnerabilities. |
|
VCID-sa8r-3pke-aaar
Aliases: CVE-2019-12515 |
There is an out-of-bounds read vulnerability in the function FlateStream::getChar() located at Stream.cc in Xpdf 4.01.01. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure or a denial of service. |
Affected by 18 other vulnerabilities. |
|
VCID-sw77-k3p5-aaae
Aliases: CVE-2019-12360 |
A stack-based buffer over-read exists in FoFiTrueType::dumpString in fofi/FoFiTrueType.cc in Xpdf 4.01.01. It can, for example, be triggered by sending crafted TrueType data in a PDF document to the pdftops tool. It might allow an attacker to cause Denial of Service or leak memory data into dump content. |
Affected by 18 other vulnerabilities. |
|
VCID-vgkx-ujm3-aaad
Aliases: CVE-2019-12957 |
In Xpdf 4.01.01, a buffer over-read could be triggered in FoFiType1C::convertToType1 in fofi/FoFiType1C.cc when the index number is larger than the charset array bounds. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It allows an attacker to use a crafted pdf file to cause Denial of Service or an information leak, or possibly have unspecified other impact. |
Affected by 18 other vulnerabilities. |
|
VCID-wj23-73ss-aaar
Aliases: CVE-2019-14294 |
An issue was discovered in Xpdf 4.01.01. There is a use-after-free in the function JPXStream::fillReadBuf at JPXStream.cc, due to an out of bounds read. |
Affected by 3 other vulnerabilities. |
|
VCID-wyvu-qmrm-aaae
Aliases: CVE-2019-14494 |
An issue was discovered in Poppler through 0.78.0. There is a divide-by-zero error in the function SplashOutputDev::tilingPatternFill at SplashOutputDev.cc. |
Affected by 38 other vulnerabilities. |
|
VCID-zmhg-f88t-aaaa
Aliases: CVE-2019-10019 |
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PSOutputDev::checkPageSlice at PSOutputDev.cc for nStripes. |
Affected by 18 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-19ru-ur7b-aaar | PDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict marking, leading to stack consumption in the function Dict::find() located at Dict.cc, which can (for example) be triggered by passing a crafted pdf file to the pdfunite binary. |
CVE-2019-9903
|
| VCID-3r4u-f5d8-aaad | An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as demonstrated by pdftocairo. |
CVE-2018-18897
|
| VCID-nc7c-ykc4-aaah | Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function. |
CVE-2019-9631
|
| VCID-ppth-geez-aaab | In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service (application crash caused by Object.h SIGABRT, because of a wrong return value from PDFDoc::setup) by crafting a PDF file in which an xref data structure is mishandled during extractPDFSubtype processing. |
CVE-2018-20662
|
| VCID-ts5u-qqb5-aaap | An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function Splash::blitTransparent at splash/Splash.cc. |
CVE-2019-10872
|
| VCID-v2re-m1mf-aaaf | In Poppler through 0.76.1, there is a heap-based buffer over-read in JPXStream::init in JPEG2000Stream.cc via data with inconsistent heights or widths. |
CVE-2019-12293
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|