307 matches found
Security Bulletin: IBM Cognos Analytics has addressed multiple vulnerabilties
Summary Multiple vulnerabilities in IBM Cognos Analytics have been addressed. A vulnerabiltiy has been addressed in the following 3rd party software component that is consumed by IBM Cognos Analytics: Apache PDFBox. An vulnerability where sensitive information when a detailed technical error...
Security Bulletin: Vulnerability in Apache PDFBox Affects IBM Control Center (CVE-2019-0228)
Summary Vulnerability in Apache PDFBox Affects IBM Control Center CVE-2019-0228 Vulnerability Details CVEID: CVE-2019-0228 DESCRIPTION: Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity XXE attacks via a craft...
Fedora Update for pdfbox FEDORA-2019-88f53a7433
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora 31 : pdfbox (2019-88f53a7433)
Update to 2.0.16 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security, Inc...
[SECURITY] Fedora 31 Update: pdfbox-2.0.16-1.fc31
Apache PDFBox is an open source Java PDF library for working with PDF documents. This project allows creation of new PDF documents, manipulation of existing documents and the ability to extract content from documents. Apache PDFBox also includes several command line utilities. Apache PDFBox is...
Fedora Update for pdfbox FEDORA-2019-6fa01d12b4
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora Update for pdfbox FEDORA-2019-9e91afa2be
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora 30 : pdfbox (2019-9e91afa2be)
Update to 2.0.16 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security, Inc...
Fedora 29 : pdfbox (2019-6fa01d12b4)
Update to 2.0.16 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security, Inc...
[SECURITY] Fedora 29 Update: pdfbox-2.0.16-1.fc29
Apache PDFBox is an open source Java PDF library for working with PDF documents. This project allows creation of new PDF documents, manipulation of existing documents and the ability to extract content from documents. Apache PDFBox also includes several command line utilities. Apache PDFBox is...
[SECURITY] Fedora 30 Update: pdfbox-2.0.16-1.fc30
Apache PDFBox is an open source Java PDF library for working with PDF documents. This project allows creation of new PDF documents, manipulation of existing documents and the ability to extract content from documents. Apache PDFBox also includes several command line utilities. Apache PDFBox is...
Security Bulletin: Open Source Apache PDFBox Vulnerabilities in IBM Content Classification
Summary Apache PDFBox could allow a remote authenticated attacker to obtain sensitive information, caused by a XML external entity XXE error when processing XML data by the XML parser. A remote attacker could exploit this vulnerability to read arbitrary files on the system or cause a denial of...
Security Bulletin: An Apache PDFBox security vulnerability has been identified with the embedded Content Manager used by IBM Business Automation Workflow (CVE-2018-8036)
Summary IBM Business Automation Workflow has addressed the following security vulnerability with the embedded Content Manager. Apache PDFBox is vulnerable to a denial of service, caused by an out-of-memory exception in AFMParser. By persuading a victim to open a specially-crafted file, a remote...
ba.sake:hepek_2.12 (>=0.2.1 <=0.3.1), cc.catalysts.boot:cat-boot-report-pdf (=1.0.1) +78 more potentially affected by CVE-2019-0228 via org.apache.pdfbox:pdfbox (=2.0.14)
org.apache.pdfbox:pdfbox MAVEN version =2.0.14 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.pdfbox:pdfbox and may be impacted: - ba.sake:hepek2.12 =0.2.1, =2.0.4, =0.7.7, =3.5.2, =3.5.2, =0.0.1-RC18, =0.0.1-RC18, =0.0.1-RC19 and more Sour...
GHSA-C9JJ-3WVG-Q65H Vulnerability that affects org.apache.pdfbox:pdfbox
Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted XFDF...
Vulnerability that affects org.apache.pdfbox:pdfbox
Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted XFDF...
CVE-2019-0228
Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted XFDF...
CVE-2019-0228
Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted XFDF...
Xxe
Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted XFDF...
CVE-2019-0228
Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted XFDF...