Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/26 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2019-16115

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Xpdf 4.01.01, a stack-based buffer under-read could be triggered in IdentityFunction::transform in Function.cc, used by GfxAxialShading::getColor. It can, fo...

7.8CVSS7AI score0.01105EPSS
Exploits1References2
OSV
OSV
added 2023/05/11 9:15 p.m.1 views

UBUNTU-CVE-2023-2663

In Xpdf 4.04 and earlier, a PDF object loop in the page label tree leads to infinite recursion and a stack overflow...

9.1CVSS6.8AI score0.00481EPSS
Exploits1References3
OSV
OSV
added 2023/05/11 9:15 p.m.1 views

UBUNTU-CVE-2023-2662

In Xpdf 4.04 and earlier, a bad color space object in the input PDF file can cause a divide-by-zero...

5.5CVSS6.8AI score0.00279EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:22 a.m.3 views

SUSE CVE-2018-18455

The GfxImageColorMap class in GfxState.cc in Xpdf 4.00 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted pdf file, as demonstrated by pdftoppm...

5.5CVSS6.9AI score0.01141EPSS
Exploits0References4
OSV
OSV
added 2019/07/27 7:15 p.m.3 views

UBUNTU-CVE-2019-14294

An issue was discovered in Xpdf 4.01.01. There is a use-after-free in the function JPXStream::fillReadBuf at JPXStream.cc, due to an out of bounds read...

5.5CVSS6.4AI score0.00953EPSS
Exploits1References4
OSV
OSV
added 2019/07/04 8:15 p.m.3 views

CVE-2019-13282

In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in SampledFunction::transform in Function.cc when using a large index for samples. It can, for example, be triggered by sending a crafted PDF document to the pdftotext tool. It allows an attacker to use a crafted pdf file to cause...

7.8CVSS6.8AI score
Exploits0References4
RedHat Linux
RedHat Linux
added 2006/01/19 5:38 p.m.3 views

security flaw

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service crash via a crafted FlateDecode stream that triggers a null dereference...

5CVSS7.3AI score0.0341EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2006/01/11 7:4 p.m.4 views

security flaw

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service infinite loop via streams that end prematurely, as demonstrated using the 1 CCITTFaxDecode and 2 DCTDecode streams, aka "Infinite CPU spins."...

10CVSS7.3AI score0.03855EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2006/01/11 6:46 p.m.6 views

security flaw

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service crash via a crafted FlateDecode stream that triggers a null dereference...

5CVSS7.3AI score0.0341EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2005/12/06 2:40 p.m.4 views

security flaw

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service infinite loop via streams that end prematurely, as demonstrated using the 1 CCITTFaxDecode and 2 DCTDecode streams, aka "Infinite CPU spins."...

10CVSS7.3AI score0.03855EPSS
Exploits1References4
Rows per page
Query Builder