CVE-2018-16646

CVE-2018-16646 affects Poppler, where in version 0.68.0 the Parser::getObj() function in Parser.cc may trigger infinite recursion via a crafted file, enabling remote DoS. Public disclosures in connected advisories confirm the issue and link it to Poppler-based components. Remediation actions acro...

CVE-2018-16646

In Poppler 0.68.0, the Parser::getObj function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack...

UBUNTU-CVE-2018-16646

In Poppler 0.68.0, the Parser::getObj function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack...

PT-2018-3607 · Poppler +4 · Poppler +4

Name of the Vulnerable Software and Affected Versions: Poppler version 0.68.0 Description: The issue is related to the Parser::getObj function in the Poppler library for rendering PDF files, which can cause infinite recursion when processing a crafted file. This can be exploited by a remote...

OpenSC Infinite Recursion Vulnerability

OpenSC is a set of software tools and libraries for smart cards, focusing on smart cards with cryptographic capabilities. An infinite recursion vulnerability exists in iaseccselectfile in libopensc/card-iasecc.c in OpenSC prior to 0.19.0-rc1 when processing responses from IAS-ECC cards. An attack...

xkbcommon infinite recursion vulnerability

xkbcommon is a keyboard key mapping compiler and support library. An infinite recursion vulnerability exists in versions of xkbcommon prior to 0.8.1, which can be exploited by a local attacker to crash an xkbcommon user by submitting a specially crafted keymap file...

EulerOS 2.0 SP3 : libxml2 (EulerOS-SA-2018-1156)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial ...

GNU Binutils debug.c File Denial of Service Vulnerability

GNU Binutils a.k.a. GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU Project to work with target files in a variety of formats, with connectors, assemblers, and other tools for target files and archives. A security vulnerability exists in the...

CVE-2018-12700

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

MGASA-2018-0290 Updated poppler packages fix security vulnerability

The updated packages fix security vulnerabilities: The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler through 0.64.0 allows remote attackers to cause a denial of service infinite recursion via a crafted PDF file, as demonstrated by pdftops. CVE-2017-18267 There is a NULL pointer...

Updated poppler packages fix security vulnerability

The updated packages fix security vulnerabilities: The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler through 0.64.0 allows remote attackers to cause a denial of service infinite recursion via a crafted PDF file, as demonstrated by pdftops. CVE-2017-18267 There is a NULL pointer...

Security Bulletin: Multiple vulnerabilities in Libxml2 affect IBM Cognos Metrics Manager.

Summary Vulnerabilities have been addressed in the Libxml2 component of IBM Cognos Metrics Manager. Vulnerability Details CVEID: CVE-2016-4658 DESCRIPTION: The libxml2 library, as used in multiple products, could allow a remote attacker to execute arbitrary code on the system, caused by a memory...

CVE-2017-18267

The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler through 0.64.0 allows remote attackers to cause a denial of service infinite recursion via a crafted PDF file, as demonstrated by pdftops...

Poppler Denial of Service Vulnerability (CNVD-2018-09469)

Poppler is a C++ class library for generating PDF, the library is inherited from Xpdf PDF reader. A security vulnerability exists in the 'FoFiType1C::cvtGlyph' function in the fofi/FoFiType1C.cc file in Poppler 0.64.0 and earlier versions. The vulnerability can be exploited by a remote attacker t...

Design/Logic Flaw

The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler through 0.64.0 allows remote attackers to cause a denial of service infinite recursion via a crafted PDF file, as demonstrated by pdftops...

CVE-2017-18267

The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler through 0.64.0 allows remote attackers to cause a denial of service infinite recursion via a crafted PDF file, as demonstrated by pdftops...

CVE-2017-18267

The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler through 0.64.0 allows remote attackers to cause a denial of service infinite recursion via a crafted PDF file, as demonstrated by pdftops...

PT-2018-3613 · Poppler +4 · Poppler +4

Name of the Vulnerable Software and Affected Versions: Poppler versions 0.64.0 and earlier Description: The issue is related to the FoFiType1C::cvtGlyph function in the Poppler library, which can cause a denial of service due to infinite recursion when processing a crafted PDF file. This can be...

UBUNTU-CVE-2017-18267

The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler through 0.64.0 allows remote attackers to cause a denial of service infinite recursion via a crafted PDF file, as demonstrated by pdftops...

EulerOS 2.0 SP1 : libxml2 (EulerOS-SA-2018-1088)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial ...