Improper Access Control

Overview Affected versions of this package are vulnerable to Improper Access Control. Heap-based buffer overflow in the PdfParser::ReadObjects function in base/PdfParser.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service application crash or possibly have unspecified other...

UBUNTU-CVE-2017-8378

Heap-based buffer overflow in the PdfParser::ReadObjects function in base/PdfParser.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via vectors related to moffsets.size...

CVE-2017-8053

PoDoFo 0.9.5 allows denial of service infinite recursion and stack consumption via a crafted PDF file in PoDoFo::PdfParser::ReadDocumentStructure PdfParser.cpp...

PoDoFo Buffer Overflow Vulnerability

PoDoFo is an open source , written in C++ using the PDF file format library . PoDoFo in the base/PdfParser.cpp file of the PdfParser::ReadXRefSubsection function has a heap buffer overflow vulnerability. An attacker can exploit this vulnerability to cause a denial of service...

CVE-2017-6844

Buffer overflow in the PoDoFo::PdfParser::ReadXRefSubsection function in PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file...

CVE-2017-5855

The PoDoFo::PdfParser::ReadXRefSubsection function in PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted file...

UBUNTU-CVE-2017-5853

Integer overflow in base/PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to have unspecified impact via a crafted file...

Oracle Outside In Technology PDF parser confusion Code Execution Vulnerability

Summary An exploitable arbitrary write vulnerability exists in the PDF parser functionality of Oracle Outside In Technology SDK. A specially crafted PDF document can cause a parser confusion resulting in an arbitrary write vulnerability ultimately leading to code execution. Tested Versions Oracle...

Oracle OIT IX SDK libvs_pdf Xref Offset Denial of Service Vulnerability

Talos Vulnerability Report TALOS-2016-0102 Oracle OIT IX SDK libvspdf Xref Offset Denial of Service Vulnerability July 19, 2016 CVE Number CVE-2016-3580 Description A vulnerability in PDF parser of the IX SDK exists that results in out of bounds heap memory access following an unchecked memory...

UBUNTU-CVE-2014-7900

Use-after-free vulnerability in the CPDFParser::IsLinearizedFile function in fpdfapi/fpdfparser/fpdfparserparser.cpp in PDFium, as used in Google Chrome before 39.0.2171.65, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document...

FreeBSD Ports: chromium

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Google Chrome < 16.0.912.63 Multiple Vulnerabilities

Binary data 6108.pasl...

FreeBSD : chromium -- multiple vulnerabilities (68ac6266-25c3-11e1-b63a-00262d5ed8ee)

Google Chrome Releases reports : 81753 Medium CVE-2011-3903: Out-of-bounds read in regex matching. Credit to David Holloway of the Chromium development community. 95465 Low CVE-2011-3905: Out-of-bounds reads in libxml. Credit to Google Chrome Security Team Inferno. 98809 Medium CVE-2011-3906:...

CVE-2011-3906

The PDF parser in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...

CVE-2011-3906

The PDF parser in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...

Out-of-bounds

The PDF parser in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...

CVE-2011-3906

The PDF parser in Google Chrome before 16.0.912.63 allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...

CVE-2011-3906

CVE-2011-3906 affects Google Chrome/Chromium prior to 16.0.912.63, arising from the PDF parser causing an out-of-bounds read that can lead to remote denial of service. The Gentoo GLSA and related OpenVAS entries reference Chromium vulnerabilities and list a fix by upgrading to Chromium 16.0.912.7...

CVE-2011-3906

Removed by vendor...

Iceni products PDF parser stack buffer overflow

Overview Iceni Argus and Infix contain a stack buffer overflow in the handling of flate-compressed PDF content, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Iceni Argus is a PDF conversion library. Argus 6.20 and earlier fail to...