4 matches found
Denial Of Service (DoS)
Apache PDFBox is vulnerable to denial of service DoS attacks. A malicious user can pass an AFM file to the application to cause an out-of-memory exception that can crash the application...
AZL-37049 CVE-2011-5244 affecting package t1lib 5.1.2-29
Multiple off-by-one errors in the 1 token and 2 linetoken functions in backend/dvi/mdvi-lib/afmparse.c in t1lib, as used in teTeX 3.0.x, GNOME evince, and possibly other products, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a DVI file containi...
CVE-2011-5244
Multiple off-by-one errors in the 1 token and 2 linetoken functions in backend/dvi/mdvi-lib/afmparse.c in t1lib, as used in teTeX 3.0.x, GNOME evince, and possibly other products, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a DVI file containi...
t1lib: Heap-based buffer overflow DVI file AFM font parser
Heap-based buffer overflow in the linetoken function in afmparse.c in t1lib, as used in teTeX 3.0.x, GNOME evince, and possibly other products, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a DVI file containing a crafted Adobe Font Metrics AFM...