114 matches found
CVE-2020-19471
An issue has been found in function DCTStream::decodeImage in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid read of size 4...
Design/Logic Flaw
An issue has been found in function DCTStream::decodeImage in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an uncaught floating point exception...
Design/Logic Flaw
An issue has been found in function DCTStream::decodeImage in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid read of size 4...
CVE-2020-19473
An issue has been found in function DCTStream::decodeImage in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an uncaught floating point exception...
CVE-2020-19471
An issue has been found in function DCTStream::decodeImage in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid read of size 4...
Modesty Pdf2json 缓冲区错误漏洞
Modesty Pdf2json is Modesty's personal developer of a Java-based code library that interacts PDF files with Json files. PDF2JSON version 0.70 has a security vulnerability that stems from an issue found in the function DCTStream::decodeImage, which could be used by an attacker to cause a a denial ...
PDF2JSON 代码问题漏洞
PDF2JSON is a conversion library based on XPDF 3.02 that can be used to convert PDF pages page by page to JSON and XML formats. PDF2JSON DCTStream::decodeImage suffers from a denial of service vulnerability. The vulnerability stems from a floating-point exception. An attacker could exploit this...
ASB-A-156261521
In DecodeImage of dnglosslessjpeg.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...
imagemagick: memory leak in function DecodeImage in coders/pcd.c
In ImageMagick before 7.0.8-25, some memory leaks exist in DecodeImage in coders/pcd.c...
ImageMagick: memory leak in DecodeImage in coders/pcd.c
ImageMagick 7.0.8-4 has a memory leak in DecodeImage in coders/pcd.c...
Huawei EulerOS: Security Advisory for ImageMagick (EulerOS-SA-2019-1651)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
graphicsmagick:coder_PICT_fuzzer: Heap-buffer-overflow in DecodeImage
Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed Report: https://oss-fuzz.com/testcase?key=5753808735174656 Project: graphicsmagick Fuzzing Engine: libFuzzer Fuzz Target: coderPICTfuzzer Job Type: libfuzzerasangraphicsmagick Platform Id: linux Crash Type: Heap-buffer-overflow READ...
graphicsmagick:coder_PICT_fuzzer: Heap-buffer-overflow in DecodeImage
Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed Report: https://oss-fuzz.com/testcase?key=5649205997862912 Project: graphicsmagick Fuzzing Engine: libFuzzer Fuzz Target: coderPICTfuzzer Job Type: libfuzzerasangraphicsmagick Platform Id: linux Crash Type: Heap-buffer-overflow READ...
Xpdf heap buffer overflow vulnerability (CNVD-2019-21441)
Xpdf is an open source PDF reader from Foo Labs. The product supports decoding LZW compressed format files and read encrypted PDF files. A buffer overflow vulnerability exists in the 'DCTStream::decodeImage' function of the Stream.cc file in Xpdf version 4.01.01. The vulnerability stems from a...
CVE-2019-13281
In Xpdf 4.01.01, a heap-based buffer overflow could be triggered in DCTStream::decodeImage in Stream.cc when writing to frameBuf memory. It can, for example, be triggered by sending a crafted PDF document to the pdftotext tool. It allows an attacker to use a crafted pdf file to cause Denial of...
CVE-2019-13281
In Xpdf 4.01.01, a heap-based buffer overflow could be triggered in DCTStream::decodeImage in Stream.cc when writing to frameBuf memory. It can, for example, be triggered by sending a crafted PDF document to the pdftotext tool. It allows an attacker to use a crafted pdf file to cause Denial of...
Heap overflow
In Xpdf 4.01.01, a heap-based buffer overflow could be triggered in DCTStream::decodeImage in Stream.cc when writing to frameBuf memory. It can, for example, be triggered by sending a crafted PDF document to the pdftotext tool. It allows an attacker to use a crafted pdf file to cause Denial of...
CVE-2019-13281
CVE-2019-13281 affects Xpdf prior to the 4.02 release (e.g., 4.01.01) where a heap-based buffer overflow in DCTStream::decodeImage() writes to frameBuf during PDF decoding. The vulnerability can be triggered by a crafted PDF sent to pdftotext, enabling denial of service and information disclosure...
CVE-2019-13281
In Xpdf 4.01.01, a heap-based buffer overflow could be triggered in DCTStream::decodeImage in Stream.cc when writing to frameBuf memory. It can, for example, be triggered by sending a crafted PDF document to the pdftotext tool. It allows an attacker to use a crafted pdf file to cause Denial of...
EulerOS 2.0 SP5 : ImageMagick (EulerOS-SA-2019-1679)
According to the versions of the ImageMagick packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In ImageMagick before 7.0.8-25, some memory leaks exist in DecodeImage in coders/pcd.c.CVE-2019-7175 - In ImageMagick before 7.0.8-25 and...