307 matches found
CVE-2019-0228
CVE-2019-0228 affects Apache PDFBox 2.0.14, enabling an XML External Entity (XXE) attack via crafted XFDF. IBM advisories fix the vulnerability by upgrading IBM Operations Analytics - Log Analysis to version 1.3.7 (PDFBox handling) and Fedora advisories show a PDFBox update to 2.0.16. The vulnera...
CVE-2019-0228
Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted XFDF...
CVE-2019-0228
Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted XFDF...
CVE-2019-0228
Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted XFDF...
XML External Entity (XXE)
Apache PDFBox is vulnerable to XML external entity XXE attacks. The XML parser does not disable external DTDs, which would allow an attacker to perform XXE attacks using a malicious XFDF file...
openSUSE Security Update : apache-pdfbox (openSUSE-2019-670)
This update for apache-pdfbox fixes the following issues : Security issue fixed : - CVE-2018-8036: Fix infinite loop while parsing files that leads to an out of memory issue bsc1099721. This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable Network...
openSUSE Security Update : apache-pdfbox (openSUSE-2019-924)
This update for apache-pdfbox fixes the following security issue : - CVE-2018-11797: A carefully crafted PDF file can trigger an extremely long running computation when parsing the page tree. bsc1111009 : This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C...
Security Bulletin: IBM FileNet Content Manager and IBM Enterprise Content Management Text Search security vulnerability in Apache PDFBox
Summary Denial of service vulnerability may affect Apache PDFBox v1.8.15 used by IBM FileNet Content Manager and IBM Enterprise Content Management Text Search. Vulnerability Details CVEID: CVE-2018-11797 DESCRIPTION: Apache PDFBox is vulnerable to a denial of service, caused by a flaw when parsin...
Security Bulletin: IBM FileNet Content Manager affected by Apache PDFBox security vulnerability
Summary IBM FileNet Content Manager has addressed the following security vulnerability. Apache PDFBox is vulnerable to a denial of service, caused by an out of memory exception in AFMParser. By persuading a victim to open a specially-crafted file, a remote attacker could exploit this vulnerabilit...
Security Bulletin: Apache PDFBox as used in IBM QRadar Incident Forensics is vulnerable to Publicly disclosed vulnerability. (CVE-2018-8036)
Summary Publicly disclosed vulnerability in Apache PDFBox. Vulnerability Details CVEID: CVE-2018-8036 Description: Apache PDFBox is vulnerable to a denial of service, caused by an out of memory exception in AFMParser. By persuading a victim to open a specially-crafted file, a remote attacker coul...
openSUSE Security Update : apache-pdfbox (openSUSE-2018-1422)
This update for apache-pdfbox fixes the following security issue : - CVE-2018-11797: A carefully crafted PDF file can trigger an extremely long running computation when parsing the page tree. bsc1111009 : This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C...
Security update for apache-pdfbox (moderate)
This update for apache-pdfbox fixes the following security issue: - CVE-2018-11797: A carefully crafted PDF file can trigger an extremely long running computation when parsing the page tree. bsc1111009: This update was imported from the SUSE:SLE-15:Update update project...
openSUSE: Security Advisory for apache-pdfbox (openSUSE-SU-2018:3798-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE-SU-2018:3755-1 Security update for apache-pdfbox
This update for apache-pdfbox fixes the following security issue: - CVE-2018-11797: A carefully crafted PDF file can trigger an extremely long running computation when parsing the page tree. bsc1111009:...
Security Bulletin: A Vulnerability in Apache PDFBox Affects Transformation Extender
Summary Vulnerabilities in Apache PDFBox affect Transformation Extender. Vulnerability Details CVE-ID: CVE-2018-8036 Description: Apache PDFBox is vulnerable to a denial of service, caused by an out of memory exception in AFMParser. By persuading a victim to open a specially-crafted file, a remot...
openSUSE: Security Advisory for apache-pdfbox (openSUSE-SU-2018:2645-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE: Security Advisory for apache-pdfbox (openSUSE-SU-2018:3384-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : apache-pdfbox (openSUSE-2018-1245)
This update for apache-pdfbox fixes the following security issue : - CVE-2018-8036: A crafted file could have triggered an infinite loop which lead to DoS bsc1099721. - CVE-2018-11797: A carefully crafted PDF file can trigger an extremely long running computation when parsing the page tree...
Security update for apache-pdfbox (moderate)
This update for apache-pdfbox fixes the following security issue: - CVE-2018-8036: A crafted file could have triggered an infinite loop which lead to DoS bsc1099721. - CVE-2018-11797: A carefully crafted PDF file can trigger an extremely long running computation when parsing the page tree...
SUSE-SU-2018:3318-1 Security update for apache-pdfbox
This update for apache-pdfbox fixes the following security issue: - CVE-2018-8036: A crafted file could have triggered an infinite loop which lead to DoS bsc1099721. - CVE-2018-11797: A carefully crafted PDF file can trigger an extremely long running computation when parsing the page tree...