Search for packages
| purl | pkg:deb/ubuntu/poppler@0.76.1-0ubuntu5 |
| Next non-vulnerable version | 0.86.1-0ubuntu1 |
| Latest non-vulnerable version | 0.86.1-0ubuntu1 |
| Risk | 3.4 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-amw7-cbg1-aaaj
Aliases: CVE-2020-27778 |
A flaw was found in Poppler in the way certain PDF files were converted into HTML. A remote attacker could exploit this flaw by providing a malicious PDF file that, when processed by the 'pdftohtml' program, would crash the application causing a denial of service. |
Affected by 0 other vulnerabilities. |
|
VCID-mcrj-8d3e-aaae
Aliases: CVE-2019-10871 |
An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc. |
Affected by 0 other vulnerabilities. |
|
VCID-qj97-mzn8-aaab
Aliases: CVE-2019-9959 |
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|