112 matches found
Heap overflow
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readHuffSymDCTHuffTable at /xpdf/Stream.cc...
Heap overflow
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::transformDataUnit at /xpdf/Stream.cc...
Heap overflow
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::getChar at /xpdf/Stream.cc...
Code injection
XPDF commit ffaf11c was discovered to contain a segmentation violation via DCTStream::getChar at /xpdf/Stream.cc...
Heap overflow
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::lookChar at /xpdf/Stream.cc...
CVE-2022-35104
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via DCTStream::reset at /xpdf/Stream.cc...
Heap overflow
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via DCTStream::reset at /xpdf/Stream.cc...
UBUNTU-CVE-2022-38231
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::getChar at /xpdf/Stream.cc...
UBUNTU-CVE-2022-38237
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readScan at /xpdf/Stream.cc...
CVE-2022-38237
XPDF contains a heap-buffer overflow in DCTStream::readScan() triggered by commit ffaf11c in /xpdf/Stream.cc. Affects the XPDF component; the CVE-2022-38237 entry has a CVSS v3.1 base score of 7.8 (HIGH) with LOCAL attack vector, low attack complexity, no privileges required, but user interaction...
CVE-2022-38237
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readScan at /xpdf/Stream.cc...
CVE-2022-38237
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readScan at /xpdf/Stream.cc...
CVE-2022-38235
CVE-2022-38235 concerns XPDF with a segmentation violation in DCTStream::getChar() implemented in /xpdf/Stream.cc. The provided documents confirm the affected component and root cause but do not include explicit patch/version details or a confirmed remediation in the supplied material. Exploitati...
CVE-2022-38233
CVE-2022-38233 concerns XPDF, where commit ffaf11c introduces a segmentation fault in DCTStream::readMCURow() within /xpdf/Stream.cc. The available connected sources consistently describe the issue as a segmentation violation in that function, without detailing affected versions, vendor advisorie...
CVE-2022-38233
XPDF commit ffaf11c was discovered to contain a segmentation violation via DCTStream::readMCURow at /xpdf/Stream.cc...
CVE-2022-38233
XPDF commit ffaf11c was discovered to contain a segmentation violation via DCTStream::readMCURow at /xpdf/Stream.cc...
CVE-2022-38231
CVE-2022-38231 describes a heap-buffer overflow in XPDF caused by the function DCTStream::getChar() in /xpdf/Stream.cc stemming from commit ffaf11c. The vulnerability impact is rated HIGH (CVSS 3.1: AV Local, AC Low, PR None, UI Required, S U, C I A H) with a base score of 7.8. Exploitation detai...
CVE-2022-38231
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::getChar at /xpdf/Stream.cc...
CVE-2022-38229
XPDF contains a heap-buffer overflow in DCTStream::readHuffSym(DCTHuffTable*) at /xpdf/Stream.cc. CVE-2022-38229 is documented with the affected component and root cause across multiple feeds (e.g., NVD, Red Hat, Debian, OSV, UBUNTU). The CVSSv3.1 base score is 7.8 (HIGH) with LOCAL attack vector...
CVE-2022-35104
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via DCTStream::reset at /xpdf/Stream.cc...