Lucene search
K

310 matches found

Fedora
Fedora
added 2017/07/16 8:23 p.m.34 views

[SECURITY] Fedora 26 Update: poppler-0.52.0-4.fc26

poppler is a PDF rendering library...

7.8CVSS2.3AI score0.04338EPSS
Exploits1
Ubuntu
Ubuntu
added 2017/07/07 2:45 p.m.65 views

USN-3350-1: poppler vulnerabilities

Aleksandar Nikolic discovered that poppler incorrectly handled JPEG 2000 images. If a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial of service or possibly execute arbitrary code with privileges of the user invoking the program. CVE-2017-28...

8.8CVSS6.5AI score0.04415EPSS
Exploits4
Talos
Talos
added 2017/07/07 12:0 a.m.88 views

Poppler PDF Image Display DCTStream::readScan() Code Execution Vulnerability

Summary An exploitable heap overflow vulnerability exists in the image rendering functionality of Poppler-0.53.0. A specifically crafted pdf can cause an image resizing after allocation has already occurred, resulting in heap corruption which can lead to code execution. An attacker controlled PDF...

8.8CVSS8.4AI score0.02716EPSS
Exploits1
Talos
Talos
added 2017/07/07 12:0 a.m.57 views

Poppler PDF Image Display DCTStream::readProgressiveSOF() Code Execution Vulnerability

Summary An exploitable heap overflow vulnerability exists in the image rendering functionality of Poppler-0.53.0. A specifically crafted PDF can cause an overly large number of color components during image rendering, resulting in heap corruption. An attacker controlled PDF file can be used to...

7.5CVSS8.3AI score0.05566EPSS
Exploits2
Fedora
Fedora
added 2017/06/09 8:19 p.m.31 views

[SECURITY] Fedora 26 Update: poppler-0.52.0-2.fc26

poppler is a PDF rendering library...

5.5CVSS2.3AI score0.01089EPSS
Exploits0
Fedora
Fedora
added 2017/06/06 3:3 a.m.33 views

[SECURITY] Fedora 25 Update: poppler-0.45.0-3.fc25

Poppler, a PDF rendering library, is a fork of the xpdf PDF viewer developed by Derek Noonburg of Glyph and Cog, LLC...

5.5CVSS2.2AI score0.01089EPSS
Exploits0
OSV
OSV
added 2017/04/21 4:59 p.m.1 views

DEBIAN-CVE-2017-7994

The function TextExtractor::ExtractText in TextExtractor.cpp:77 in PoDoFo 0.9.5 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted PDF document...

6.5CVSS6.7AI score0.02604EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2016/11/28 12:0 a.m.50 views

CentOS 7 : poppler (CESA-2016:2580)

An update for poppler is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.3CVSS7.4AI score0.04557EPSS
Exploits0References2
Cent OS
Cent OS
added 2016/11/25 3:42 p.m.66 views

poppler security update

CentOS Errata and Security Advisory CESA-2016:2580 An update for poppler is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.3CVSS7.4AI score0.04557EPSS
Exploits0References7
Gentoo Linux
Gentoo Linux
added 2016/11/22 12:0 a.m.55 views

Poppler: Multiple vulnerabilities

Background Poppler is a PDF rendering library based on the xpdf-3.0 code base. Description Multiple vulnerabilities have been discovered in Poppler. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted PDF using...

9.3CVSS8.3AI score0.04557EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/11/04 12:0 a.m.184 views

RHEL 7 : poppler (RHSA-2016:2580)

An update for poppler is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.3CVSS7.4AI score0.04557EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2016/06/17 12:0 a.m.6 views

The vulnerability of Google Chrome browser allows a perpetrator to trigger a service failure.

The vulnerability of the CPDFDIBSource::CreateDecoder function located in core/fpdfapi/fpdfrender/fpdfrenderloadimage.cpp in the PDFium browser component of Google Chrome is related to improper handling of initialization errors. Exploiting this vulnerability can allow an attacker to trigger a...

4.3CVSS7AI score0.0128EPSS
Exploits0References4Affected Software1
Ubuntu
Ubuntu
added 2016/05/02 4:58 p.m.54 views

USN-2958-1: poppler vulnerabilities

It was discovered that the poppler pdfseparate tool incorrectly handled certain filenames. A local attacker could use this issue to cause the tool to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only applied to Ubuntu 12.04 LTS. CVE-2013-4473,...

9.3CVSS7.8AI score0.10483EPSS
Exploits1
OpenVAS
OpenVAS
added 2016/05/01 12:0 a.m.26 views

Debian Security Advisory DSA 3563-1 (poppler - security update)

It was discovered that a heap overflow in the Poppler PDF library may result in denial of service and potentially the execution of arbitrary code if a malformed PDF file is opened. OpenVAS Vulnerability Test $Id: deb3563.nasl 6608 2017-07-07 12:05:05Z cfischer $ Auto-generated from advisory DSA...

9.3CVSS0.1AI score0.04557EPSS
Exploits0References1
0day.today
0day.today
added 2016/01/26 12:0 a.m.28 views

pdfium - opj_jp2_apply_pclr (libopenjpeg) Heap Based Out-of-Bounds Read

Exploit for multiple platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=626 The following crash was encountered in pdfium the Chrome PDF renderer during PDF fuzzing: --- cut --- ==9326==ERROR: AddressSanitizer: heap-buffer-overflow on addres...

7.4AI score
Exploits0
CNVD
CNVD
added 2015/12/07 12:0 a.m.7 views

Google Chrome 'opj_dwt_decode_1*' Denial of Service Vulnerability

Google Chrome is the United States Google Google company developed a Web browser. PDFium is one of the open source PDF rendering engine. Google Chrome 47.0.2526.73 previous versions of PDFium used in OpenJPEG's dwt.c file in the 'opjdwtdecode1' function has a security vulnerability. A remote...

6.8CVSS8.9AI score0.0146EPSS
Exploits0References1
CNVD
CNVD
added 2015/12/07 12:0 a.m.3 views

Google Chrome PDFium Denial of Service Vulnerability (CNVD-2015-07966)

Google Chrome is the United States Google Google company developed a Web browser. PDFium is one of the open source PDF rendering engine. Google Chrome 47.0.2526.73 previous versions of PDFium used in the fxcodec/jbig2/JBig2SymbolDict.cpp file in the 'CJBig2SymbolDict' class there is a security...

7.5CVSS8.8AI score0.01682EPSS
Exploits0References1
OSV
OSV
added 2015/01/22 10:59 p.m.3 views

UBUNTU-CVE-2014-7945

OpenJPEG before r2908, as used in PDFium in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service out-of-bounds read via a crafted PDF document, related to j2k.c, jp2.c, and t2.c...

5CVSS7.3AI score0.01762EPSS
Exploits0References5
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.36 views

Poppler <= 0.8.4 libpoppler uninitialized pointer Code Execution PoC

No description provided by source. Felipe Andres Manzano [email protected] updates in http://felipe.andres.manzano.googlepages.com/home ''' Sumary: ======= The libpoppler pdf rendering library, can free uninitialized pointers, leading to arbitrary code execution. This vulnerability result...

7.1AI score
Exploits0
Gentoo Linux
Gentoo Linux
added 2014/01/21 12:0 a.m.38 views

Poppler: Multiple vulnerabilities

Background Poppler is a cross-platform PDF rendering library originally based on Xpdf. Description Multiple vulnerabilities have been discovered in Poppler. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a specially crafted PDF...

7.5CVSS8.3AI score0.10483EPSS
Exploits1
Rows per page
Query Builder