Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2011-1554HistoryMar 31, 2011 - 11:55 p.m.
CVE-2011-1554
2011-03-3123:55:00
Debian Security Bug Tracker
security-tracker.debian.org
11
0.029 Low
EPSS
Percentile
90.7%
Off-by-one error in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service (application crash) via a PDF document containing a crafted Type 1 font that triggers an invalid memory read, integer overflow, and invalid pointer dereference, a different vulnerability than CVE-2011-0764.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | poppler | < 22.12.0-2 | poppler_22.12.0-2_all.deb |
| Debian | 11 | all | poppler | < 20.09.0-3.1+deb11u1 | poppler_20.09.0-3.1+deb11u1_all.deb |
| Debian | 10 | all | poppler | < 0.71.0-5 | poppler_0.71.0-5_all.deb |
| Debian | 999 | all | poppler | < 24.02.0-5 | poppler_24.02.0-5_all.deb |
| Debian | 13 | all | poppler | < 24.02.0-5 | poppler_24.02.0-5_all.deb |
| Debian | 12 | all | xpdf | < 3.02-9 | xpdf_3.02-9_all.deb |
| Debian | 11 | all | xpdf | < 3.02-9 | xpdf_3.02-9_all.deb |
| Debian | 10 | all | xpdf | < 3.02-9 | xpdf_3.02-9_all.deb |
| Debian | 999 | all | xpdf | < 3.02-9 | xpdf_3.02-9_all.deb |
| Debian | 13 | all | xpdf | < 3.02-9 | xpdf_3.02-9_all.deb |
Related
ubuntucve
ubuntucve
cvelist
cvelist
prion
prion
Integer overflow
2011-03-31 23:55:00
Design/Logic Flaw
2011-03-31 22:55:00
Code injection
2011-03-31 23:55:00
nessus
nessus
SuSE 10 Security Update : t1lib (ZYPP Patch Number 8089)
2012-06-15 00:00:00
openSUSE Security Update : t1lib (openSUSE-SU-2012:0559-1)
2014-06-13 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2012:0740-1)
2021-06-09 00:00:00
Slackware Advisory SSA:2012-228-01 t1lib
2012-09-10 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:0744-1)
2021-06-09 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:07:02
Denial Of Service (DoS)
2020-04-10 01:07:02
cve
cve
CVE-2011-1554
2011-03-31 23:55:00
CVE-2011-0764
2011-03-31 22:55:02
slackware
slackware
[slackware-security] t1lib
2012-08-16 06:32:38
securityvulns
securityvulns
t1lib / xpdf library multiple security vulnerabilities
2012-01-16 00:00:00
TSSA-2011-01 xpdf : multiple vulnerabilities allow remote code execution
2011-03-29 00:00:00
debiancve
debiancve
ubuntu
ubuntu
t1lib vulnerability
2011-12-21 00:00:00
t1lib vulnerabilities
2012-01-19 00:00:00
cert
cert
Foolabs Xpdf contains a denial of service vulnerability
2011-03-21 00:00:00
oraclelinux
oraclelinux
texlive security update
2012-02-15 00:00:00
t1lib security update
2012-01-24 00:00:00
tetex security update
2012-08-23 00:00:00
amazon
amazon
Medium: texlive
2012-03-04 16:08:00
Medium: t1lib
2012-02-02 14:26:00
centos
centos
t1lib security update
2012-01-30 20:25:25
kpathsea, mendexk, texlive security update
2012-02-16 13:36:55
tetex security update
2012-08-23 23:12:26
osv
osv
t1lib - several
2012-01-14 00:00:00
redhat
redhat
(RHSA-2012:0137) Moderate: texlive security update
2012-02-15 00:00:00
(RHSA-2012:0062) Moderate: t1lib security update
2012-01-24 00:00:00
(RHSA-2012:1201) Moderate: tetex security update
2012-08-23 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: t1lib-5.1.2-9.fc15
2012-01-28 03:28:44
[SECURITY] Fedora 16 Update: t1lib-5.1.2-9.fc16
2012-01-28 03:23:39
debian
debian
[SECURITY] [DSA 2388-1] t1lib security update
2012-01-15 10:26:10
gentoo
gentoo
T1Lib: : Multiple vulnerabilities
2017-01-23 00:00:00