Microsoft Windows PDF Library DirectWrite Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing o...

UBUNTU-CVE-2014-5012

DOMPDF before 0.6.2 allows denial of service...

CVE-2019-17064

Catalog.cc in Xpdf 4.02 has a NULL pointer dereference because Catalog.pageLabels is initialized too late in the Catalog constructor...

CVE-2019-5067

An uninitialized memory access vulnerability exists in the way Aspose.PDF 19.2 for C++ handles invalid parent object pointers. A specially crafted PDF can cause a read and write from uninitialized memory, resulting in memory corruption and possibly arbitrary code execution. To trigger this...

[SECURITY] Fedora 31 Update: pdfbox-2.0.16-1.fc31

Apache PDFBox is an open source Java PDF library for working with PDF documents. This project allows creation of new PDF documents, manipulation of existing documents and the ability to extract content from documents. Apache PDFBox also includes several command line utilities. Apache PDFBox is...

Fedora Update for pdfbox FEDORA-2019-9e91afa2be

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 30 Update: pdfbox-2.0.16-1.fc30

Apache PDFBox is an open source Java PDF library for working with PDF documents. This project allows creation of new PDF documents, manipulation of existing documents and the ability to extract content from documents. Apache PDFBox also includes several command line utilities. Apache PDFBox is...

UBUNTU-CVE-2019-14267

PDFResurrect 0.15 has a buffer overflow via a crafted PDF file because data associated with startxref and %%EOF is mishandled...

CVE-2019-14211

An issue was discovered in Foxit PhantomPDF before 8.3.11. The application could crash due to the lack of proper validation of the existence of an object prior to performing operations on that object when executing JavaScript...

DEBIAN-CVE-2018-20751

An issue was discovered in croppage in PoDoFo 0.9.6. For a crafted PDF document, pPage-GetObject-GetDictionary.AddKeyPdfName"MediaBox",var can be problematic due to the function GetObject being called for the pPage NULL pointer object. The value of pPage at this point is 0x0, which causes a NULL...

Foxit Quick PDF Library Out-of-Bounds Memory Access Vulnerability

Foxit Quick PDF Library is China's Foxit Foxit Software Corporation, a PDF SDK Software Development Kit. The product is mainly used to create, render and edit PDF documents. An out-of-bounds memory access vulnerability exists in Foxit Quick PDF Library. An attacker could cause an access conflict ...

CVE-2018-20249

In Foxit Quick PDF Library all versions prior to 16.12, issue where loading a malformed or malicious PDF containing invalid xref entries using the DAOpenFile or DAOpenFileReadOnly functions may result in an access violation caused by out of bounds memory access...

CVE-2018-20249

The affected component is Foxit Quick PDF Library (all versions prior to 16.12). The vulnerability arises when loading a malformed or malicious PDF containing invalid xref entries via DAOpenFile or DAOpenFileReadOnly, causing an access violation due to out-of-bounds memory access. This is documen...

CVE-2018-20248

Foxit Quick PDF Library (prior to version 16.12) is affected by CVE-2018-20248, where loading a malformed or malicious PDF containing invalid xref table pointers or data via LoadFromFile, LoadFromString, LoadFromStream, DAOpenFile, or DAOpenFileReadOnly can cause an access violation due to out-of...

CVE-2018-20247

Foxit Quick PDF Library (pre-16.12) is affected by a stack overflow when loading a malformed PDF with a recursive page tree structure via LoadFromFile, LoadFromString, or LoadFromStream. The issue stems from handling of recursive page trees and can lead to a stack overflow. CNVD reports the vulne...

CVE-2018-20248

In Foxit Quick PDF Library all versions prior to 16.12, issue where loading a malformed or malicious PDF containing invalid xref table pointers or invalid xref table data using the LoadFromFile, LoadFromString, LoadFromStream, DAOpenFile or DAOpenFileReadOnly functions may result in an access...

CVE-2018-20248

In Foxit Quick PDF Library all versions prior to 16.12, issue where loading a malformed or malicious PDF containing invalid xref table pointers or invalid xref table data using the LoadFromFile, LoadFromString, LoadFromStream, DAOpenFile or DAOpenFileReadOnly functions may result in an access...

Type confusion

In Foxit Quick PDF Library all versions prior to 16.12, issue where loading a malformed or malicious PDF containing invalid xref entries using the DAOpenFile or DAOpenFileReadOnly functions may result in an access violation caused by out of bounds memory access...

Type confusion

In Foxit Quick PDF Library all versions prior to 16.12, issue where loading a malformed or malicious PDF containing invalid xref table pointers or invalid xref table data using the LoadFromFile, LoadFromString, LoadFromStream, DAOpenFile or DAOpenFileReadOnly functions may result in an access...

CVE-2018-20247

In Foxit Quick PDF Library all versions prior to 16.12, issue where loading a malformed or malicious PDF containing a recursive page tree structure using the LoadFromFile, LoadFromString or LoadFromStream functions results in a stack overflow...