VulnerableCode Package Details - pkg:deb/ubuntu/xpdf@3.04-1build1

Search for packages

Package details: pkg:deb/ubuntu/xpdf@3.04-1build1

Essentials
History (0)

purl	pkg:deb/ubuntu/xpdf@3.04-1build1

Next non-vulnerable version	3.04-13
Latest non-vulnerable version	3.04-13
Risk	3.1

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-69fm-uk54-aaaa Aliases: CVE-2018-18650	An issue was discovered in Xpdf 4.00. XRef::readXRefStream in XRef.cc allows attackers to launch a denial of service (Integer Overflow) via a crafted /Size value in a pdf file, as demonstrated by pdftohtml. This is mainly caused by the program attempting a malloc operation for a large amount of memory.	3.04-13 Affected by 0 other vulnerabilities.
VCID-yjws-ku6g-aaaa Aliases: CVE-2018-18651	An issue was discovered in Xpdf 4.00. catalog->getNumPages() in AcroForm.cc allows attackers to launch a denial of service (hang caused by large loop) via a specific pdf file, as demonstrated by pdftohtml. This is mainly caused by a large number after the /Count field in the file.	3.04-13 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version