330 matches found
Adobe PDFL SDK 缓冲区错误漏洞
The Adobe PDFL SDK is a software development kit for OEMs, ISVs, system integrators, and enterprise IT developers from Adobe, Inc. that contains a powerful set of functions for developing third-party solutions and workflows based on the Adobe PDF standard. A buffer error vulnerability exists in...
APSB24-98 : Security update available for Adobe PDFL SDK
Adobe has released an update for the Adobe PDF Library Software Development Kit SDK for Windows, Linux and macOS. Adobe PDFL SDK contains a set of functions for developing third-party solutions and workflows built upon the Adobe PDF standard. This update resolves a critical vulnerability that cou...
The vulnerability of the APDFL library used by the 3D JT and JT2Go viewing tools, as well as the Teamcenter Visualization lifecycle management system, allows a perpetrator to execute arbitrary code.
The vulnerability of the APDFL library used by the 3D JT and JT2Go viewing tools, as well as the Teamcenter Visualization lifecycle management system, relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow attackers to execute arbitrary code...
UBUNTU-CVE-2024-22641
TCPDF version 6.6.5 and before is vulnerable to ReDoS Regular Expression Denial of Service if parsing an untrusted SVG file...
UBUNTU-CVE-2024-22640
TCPDF version =6.6.5 is vulnerable to ReDoS Regular Expression Denial of Service if parsing an untrusted HTML page with a crafted color...
TCPDF 安全漏洞
TCPDF is an open source library from Tecnick. It is used to generate PDF documents and barcodes. TCPDF 6.6.5 and earlier versions of a security vulnerability , the vulnerability stems from the use of carefully crafted color HTML pages vulnerable to denial of service attacks...
UBUNTU-CVE-2024-32489
TCPDF before 6.7.4 mishandles calls that use HTML syntax...
CVE-2023-46250
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions 3.7.0 through 3.16.4 can craft a PDF which leads to an infinite loop. This infinite loop blocks the current process and can utilize a single core of the CPU by 100%. It does not affec...
Path traversal
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions 3.7.0 through 3.16.4 can craft a PDF which leads to an infinite loop. This infinite loop blocks the current process and can utilize a single core of the CPU by 100%. It does not affec...
CVE-2023-46250 pypdf possible Infinite Loop when PdfWriter(clone_from) is used with a PDF
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions 3.7.0 through 3.16.4 can craft a PDF which leads to an infinite loop. This infinite loop blocks the current process and can utilize a single core of the CPU by 100%. It does not affec...
CVE-2023-46250
The CVE-2023-46250 issue affects the pypdf project (pure-Python PDF library). Versions 3.7.0 through 3.16.4 can be exploited to craft a PDF that triggers an infinite loop, potentially tying up a CPU core (local impact). The vulnerability is fixed in version 3.17.0. As a workaround, the patch can ...
DEBIAN-CVE-2020-26683
A memory leak issue discovered in /pdf/pdf-font-add.c in Artifex Software MuPDF 1.17.0 allows attackers to obtain sensitive information...
USN-6280-1 pypdf2 vulnerability
It was discovered that PyPDF2 incorrectly handled PDF files with certain markers. If a user or automated system were tricked into processing a specially crafted file, an attacker could possibly use this issue to consume system resources, resulting in a denial of service...
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS : PyPDF2 vulnerability (USN-6280-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6280-1 advisory. It was discovered that PyPDF2 incorrectly handled PDF files with certain markers. If a user or automated system were tricked...
CVE-2023-36810
pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. An attacker who uses this vulnerability can craft a PDF which leads to unexpected long runtime. This quadratic runtime blocks the current process and can utilize a single core of t...
Code injection
pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. In version 2.10.5 an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This infinite loop blocks the current process and can utilize a single co...
Design/Logic Flaw
pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. An attacker who uses this vulnerability can craft a PDF which leads to unexpected long runtime. This quadratic runtime blocks the current process and can utilize a single core of t...
CVE-2023-36810 Quadratic runtime with malformed PDF missing xref marker in pypdf
pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. An attacker who uses this vulnerability can craft a PDF which leads to unexpected long runtime. This quadratic runtime blocks the current process and can utilize a single core of t...
CVE-2023-36810 Quadratic runtime with malformed PDF missing xref marker in pypdf
pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. An attacker who uses this vulnerability can craft a PDF which leads to unexpected long runtime. This quadratic runtime blocks the current process and can utilize a single core of t...
CVE-2023-36807 Infinite Loop when reading malformed objects in pypdf
pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. In version 2.10.5 an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This infinite loop blocks the current process and can utilize a single co...