1139 matches found
Design/Logic Flaw
The client libraries in Apache Thrift before 0.9.3 might allow remote authenticated users to cause a denial of service infinite recursion via vectors involving the skip function...
CVE-2015-3254
Removed by vendor...
CVE-2015-3254
Apache Thrift client libraries before 0.9.3 are affected by CVE-2015-3254, which could allow a remote authenticated user to trigger a denial of service via infinite recursion in the skip function. Impact is a partial denial of service (availability affected) with network access and no confidentia...
PT-2017-6654 · Apache +1 · Apache Thrift +1
Name of the Vulnerable Software and Affected Versions: Apache Thrift versions prior to 0.9.3 Description: The issue allows remote authenticated users to cause a denial of service, specifically through infinite recursion, by exploiting vectors related to the skip function. Recommendations: For...
QPDF 'libqpdf/QPDFObjectHandle.cc' Denial of Service Vulnerability
QPDF is a command line program capable of structuring PDFs. The program can encrypt PDF files, analyze or change the internal structure of PDF files. A denial of service vulnerability exists in the libqpdf.a file in QPDF version 6.0.0. A remote attacker can exploit this vulnerability to cause a...
QPDF Denial of Service Vulnerability (CNVD-2017-08102)
QPDF is a command line program capable of structuring PDFs. The program can encrypt PDF files, analyze or change the internal structure of PDF files. A denial of service vulnerability exists in the libqpdf.a file in QPDF version 6.0.0. A remote attacker can exploit this vulnerability to cause a...
QPDF Denial of Service Vulnerability
QPDF is a command line program capable of structuring PDFs. The program can encrypt PDF files, analyze or change the internal structure of PDF files. A denial of service vulnerability exists in the libqpdf.a file in QPDF version 6.0.0. A remote attacker can exploit this vulnerability to cause a...
CVE-2017-9209
libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service infinite recursion and stack consumption via a crafted PDF document, related to QPDFObjectHandle::parseInternal, aka qpdf-infiniteloop2...
CVE-2017-9208
libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service infinite recursion and stack consumption via a crafted PDF document, related to releaseResolved functions, aka qpdf-infiniteloop1...
DEBIAN-CVE-2017-9209
libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service infinite recursion and stack consumption via a crafted PDF document, related to QPDFObjectHandle::parseInternal, aka qpdf-infiniteloop2...
CVE-2017-9210
libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service infinite recursion and stack consumption via a crafted PDF document, related to unparse functions, aka qpdf-infiniteloop3...
ALPINE-CVE-2017-9210
libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service infinite recursion and stack consumption via a crafted PDF document, related to unparse functions, aka qpdf-infiniteloop3...
ALPINE-CVE-2017-9208
libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service infinite recursion and stack consumption via a crafted PDF document, related to releaseResolved functions, aka qpdf-infiniteloop1...
DEBIAN-CVE-2017-9210
libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service infinite recursion and stack consumption via a crafted PDF document, related to unparse functions, aka qpdf-infiniteloop3...
CVE-2017-9209
libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service infinite recursion and stack consumption via a crafted PDF document, related to QPDFObjectHandle::parseInternal, aka qpdf-infiniteloop2...
Resource Management Errors
Overview Affected versions of this package are vulnerable to Resource Management Errors libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service infinite recursion and stack consumption via a crafted PDF document, related to QPDFObjectHandle::parseInternal, aka...
Resource Management Errors
Overview Affected versions of this package are vulnerable to Resource Management Errors libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service infinite recursion and stack consumption via a crafted PDF document, related to unparse functions, aka qpdf-infiniteloop3. Remediati...
CVE-2017-9208
libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service infinite recursion and stack consumption via a crafted PDF document, related to releaseResolved functions, aka qpdf-infiniteloop1...
CVE-2017-9210
libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service infinite recursion and stack consumption via a crafted PDF document, related to unparse functions, aka qpdf-infiniteloop3...
CVE-2017-9210
CVE-2017-9210 affects libqpdf.a in QPDF 6.0.0, allowing remote attackers to cause a denial of service via a crafted PDF, via the unparse functions (qpdf-infiniteloop3). The issue is due to an infinite recursion/stack consumption in QPDF when parsing crafted documents. Connected sources (EulerOS/N...