132 matches found
UBUNTU-CVE-2019-14294
An issue was discovered in Xpdf 4.01.01. There is a use-after-free in the function JPXStream::fillReadBuf at JPXStream.cc, due to an out of bounds read...
CVE-2019-14294
An issue was discovered in Xpdf 4.01.01. There is a use-after-free in the function JPXStream::fillReadBuf at JPXStream.cc, due to an out of bounds read...
CVE-2019-14294
An issue was discovered in Xpdf 4.01.01. There is a use-after-free in the function JPXStream::fillReadBuf at JPXStream.cc, due to an out of bounds read...
CVE-2019-14294
CVE-2019-14294 affects Xpdf 4.01.01. The issue is a use-after-free in JPXStream::fillReadBuf (JPXStream.cc) caused by an out-of-bounds read. Public sources describe this as a vulnerability in Xpdf with references to memory misreference and potential denial of service; there are notes about unpatc...
CVE-2019-9959
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo...
Poppler Integer Overflow Vulnerability
Poppler is based on xpdf-3.0 code base PDF rendering library. An integer overflow vulnerability exists in Poppler 0.78.0 and earlier versions. The vulnerability stems from the JPXStream::init function not checking for negative values of the stream length. An attacker can exploit the vulnerability...
CVE-2019-9959
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo...
ALPINE-CVE-2019-9959
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo...
DEBIAN-CVE-2019-9959
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo...
Integer overflow
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo...
Integer Overflow or Wraparound
Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound. The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk o...
UBUNTU-CVE-2019-9959
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo...
CVE-2019-9959
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo...
CVE-2019-9959
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo...
CVE-2019-9959
CVE-2019-9959 affects Poppler (PDF rendering library); the root cause is an integer overflow in JPXStream::init due to not checking negative stream length, enabling allocation of a large heap memory chunk controlled by an attacker. Affected versions include Poppler 0.78.0 and earlier. Connected a...
CVE-2019-9959
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo...
CVE-2019-9959
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo...
The vulnerability of the JPXStream::init function in the Poppler PDF rendering library allows a attacker to execute arbitrary code or cause a service failure.
The vulnerability of the JPXStream::init function JPEG2000Stream.cc in the Poppler PDF rendering library is related to buffer overflow attacks. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure by using a specially crafted PDF document...
PT-2019-5843 · Poppler +5 · Poppler +5
Name of the Vulnerable Software and Affected Versions: Poppler version 0.78.0 and earlier Description: The issue is related to the JPXStream::init function, which does not check for negative values of stream length, leading to an Integer Overflow. This allows an attacker to allocate a large memor...
CVE-2019-12293
In Poppler through 0.76.1, there is a heap-based buffer over-read in JPXStream::init in JPEG2000Stream.cc via data with inconsistent heights or widths...