23 matches found
EUVD-2018-13533
Malware in sbrugna...
SUSE CVE-2018-21009
Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc...
The vulnerability of the `Parser::makeStream` function in the Poppler PDF rendering library allows a attacker to access confidential data, compromise its integrity, and cause service interruptions.
The vulnerability of the Parser::makeStream function in the Poppler PDF rendering library is related to a numerical overflow condition. Exploiting this vulnerability could allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...
NewStart CGSL CORE 5.05 / MAIN 5.05 : poppler Multiple Vulnerabilities (NS-SA-2020-0110)
The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has poppler packages installed that are affected by multiple vulnerabilities: - An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc...
Amazon Linux AMI : poppler (ALAS-2020-1398)
The version of poppler installed on the remote host is prior to 0.26.5-42.20. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1398 advisory. The tiffdocumentrender and tiffdocumentgetthumbnail functions in the TIFF document backend in GNOME Evince through...
OSV-2020-713 Heap-buffer-overflow in XRef::getEntry
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=12797 Crash type: Heap-buffer-overflow READ 4 Crash state: XRef::getEntry Parser::makeStream Parser::getObj...
poppler: integer overflow in Parser::makeStream in Parser.cc
Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc...
CVE-2018-21009
Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc...
CVE-2018-21009
Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc...
DEBIAN-CVE-2018-21009
Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc...
Integer overflow
Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc...
CVE-2018-21009
Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc...
UBUNTU-CVE-2018-21009
Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc...
CVE-2018-21009
Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc...
CVE-2018-21009
CVE-2018-21009 affects Poppler up to version 0.66.0, caused by an integer overflow in Parser::makeStream (Parser.cc). Connected advisories confirm this issue across several distributions; impact involves memory corruption with potential exploitation paths not detailed in these docs. Remediation p...
PT-2019-5747 · Poppler +4 · Poppler +4
Name of the Vulnerable Software and Affected Versions: Poppler versions prior to 0.66.0 Description: The issue is related to an integer overflow in the Parser::makeStream function in Parser.cc. This can potentially allow a remote attacker to access confidential data, compromise data integrity, an...
CVE-2018-20481
XRef::getEntry in XRef.cc in Poppler 0.72.0 mishandles unallocated XRef entries, which allows remote attackers to cause a denial of service NULL pointer dereference via a crafted PDF document, when XRefEntry::setFlag in XRef.h is called from Parser::makeStream in Parser.cc...
CVE-2018-20481
XRef::getEntry in XRef.cc in Poppler 0.72.0 mishandles unallocated XRef entries, which allows remote attackers to cause a denial of service NULL pointer dereference via a crafted PDF document, when XRefEntry::setFlag in XRef.h is called from Parser::makeStream in Parser.cc...
CVE-2018-20481
XRef::getEntry in XRef.cc in Poppler 0.72.0 mishandles unallocated XRef entries, which allows remote attackers to cause a denial of service NULL pointer dereference via a crafted PDF document, when XRefEntry::setFlag in XRef.h is called from Parser::makeStream in Parser.cc...
CVE-2018-20481
XRef::getEntry in XRef.cc in Poppler 0.72.0 mishandles unallocated XRef entries, which allows remote attackers to cause a denial of service NULL pointer dereference via a crafted PDF document, when XRefEntry::setFlag in XRef.h is called from Parser::makeStream in Parser.cc...