Lucene search
K

132 matches found

NVD
NVD
added 2022/08/30 4:15 a.m.16 views

CVE-2022-24107

Xpdf prior to 4.04 lacked an integer overflow check in JPXStream.cc...

7.8CVSS0.00292EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2022/08/30 4:15 a.m.27 views

CVE-2022-24107

Xpdf prior to 4.04 lacked an integer overflow check in JPXStream.cc...

7.8CVSS7.1AI score0.00292EPSS
Exploits0References6
OSV
OSV
added 2022/08/30 4:15 a.m.2 views

UBUNTU-CVE-2022-24107

Xpdf prior to 4.04 lacked an integer overflow check in JPXStream.cc...

7.8CVSS5.8AI score0.00292EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2022/08/30 3:4 a.m.39 views

CVE-2022-24107

Xpdf prior to 4.04 lacked an integer overflow check in JPXStream.cc...

7.8CVSS4.3AI score0.00292EPSS
Exploits0
CNNVD
CNNVD
added 2022/08/30 12:0 a.m.4 views

XPDF 输入验证错误漏洞

XPDF is an open source PDF reader from FOO Labs. The product supports decoding files in LZW compressed format and reading encrypted PDF files. A security vulnerability exists in XPDF versions prior to 4.04, which stems from a missing integer overflow check in JPXStream.cc...

7.8CVSS6.9AI score0.00292EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2022/05/21 12:13 a.m.28 views

CVE-2018-7455

An out-of-bounds read in JPXStream::readTilePart in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml...

5.5CVSS4.8AI score0.00799EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/07/06 12:0 a.m.7 views

The vulnerability of the JPXStream::init function in the Poppler PDF rendering library, related to integer overflow of the value being filled, allows a attacker to cause a service failure.

The vulnerability of the JPXStream::init function in the Poppler PDF rendering library is related to the lack of checks for negative stream lengths. Exploiting this vulnerability allows a remote attacker to cause service interruptions...

6.5CVSS6.6AI score0.01907EPSS
Exploits0References13Affected Software5
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.27 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : poppler Multiple Vulnerabilities (NS-SA-2020-0074)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has poppler packages installed that are affected by multiple vulnerabilities: - An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc...

8.8CVSS7AI score0.02527EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.33 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : poppler Multiple Vulnerabilities (NS-SA-2020-0110)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has poppler packages installed that are affected by multiple vulnerabilities: - An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc...

8.8CVSS7AI score0.02527EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2020/08/26 12:0 a.m.39 views

Amazon Linux 2 : poppler (ALAS-2020-1481)

The version of poppler installed on the remote host is prior to 0.26.5-42. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1481 advisory. An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function...

8.8CVSS7AI score0.02527EPSS
Exploits2References9
Tenable Nessus
Tenable Nessus
added 2020/07/20 12:0 a.m.45 views

Amazon Linux AMI : poppler (ALAS-2020-1398)

The version of poppler installed on the remote host is prior to 0.26.5-42.20. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1398 advisory. The tiffdocumentrender and tiffdocumentgetthumbnail functions in the TIFF document backend in GNOME Evince through...

8.8CVSS7AI score0.02527EPSS
Exploits2References11
RedHat Linux
RedHat Linux
added 2020/03/31 9:13 p.m.9 views

poppler: integer overflow in JPXStream::init function leading to memory consumption

The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo...

6.5CVSS5.8AI score0.01907EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for poppler (EulerOS-SA-2019-1986)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.01907EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for poppler (EulerOS-SA-2019-2015)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.01907EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for poppler (EulerOS-SA-2019-1827)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.7AI score0.03518EPSS
Exploits1References2
Mageia
Mageia
added 2019/09/15 12:11 p.m.45 views

Updated poppler packages fix security vulnerabilities

The updated packages fix security vulnerabilities: The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an...

6.5CVSS1.4AI score0.02486EPSS
Exploits1References2
Mageia
Mageia
added 2019/09/06 9:9 p.m.61 views

Updated poppler packages fix security vulnerabilities

Updated poppler packages fix security vulnerabilities Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsamplerowboxfilter function. CVE-2019-9631 PDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict marking, leading to stack consumption in the function...

9.8CVSS1.1AI score0.03518EPSS
Exploits7References4
CNVD
CNVD
added 2019/07/29 12:0 a.m.3 views

Xpdf memory misreference vulnerability (CNVD-2019-26658)

Xpdf is a free PDF viewer and toolkit that includes a text extractor, image converter, HTML converter and more. A memory misreference vulnerability exists in the JPXStream::fillReadBuf function in JPXStream.cc in Xpdf 4.01.01. An attacker could exploit this vulnerability to cause a denial of...

5.5CVSS6.7AI score0.00953EPSS
Exploits1References1
OSV
OSV
added 2019/07/27 7:15 p.m.3 views

CVE-2019-14294

An issue was discovered in Xpdf 4.01.01. There is a use-after-free in the function JPXStream::fillReadBuf at JPXStream.cc, due to an out of bounds read...

5.5CVSS6.3AI score0.00953EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2019/07/27 7:15 p.m.25 views

CVE-2019-14294

An issue was discovered in Xpdf 4.01.01. There is a use-after-free in the function JPXStream::fillReadBuf at JPXStream.cc, due to an out of bounds read...

5.5CVSS6.4AI score0.00953EPSS
Exploits1References3
Rows per page
Query Builder