8 matches found
PT-2024-40883 · Git +1 · Xpdf
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read, which occurs in the GfxTilingPattern class, specifically in the functions scanXObjectForBlendMode,...
Huawei EulerOS: Security Advisory for poppler (EulerOS-SA-2016-1059)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Browser Side-Channel Flaw De-Anonymizes Facebook Data
A side-channel vulnerability in Google Chrome and Mozilla Firefox allows drive-by de-anonymization of Facebook users. An exploit would allow an attacker to pick up the profile picture, username and the “likes” of unsuspecting visitors who find themselves landing on a malicious website – with no...
PT-2017-2039 · Adobe +3 · Flash Player +3
Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions 25.0.0.148 and earlier Description: The issue is related to a memory corruption vulnerability in the BlendMode class. This vulnerability can be exploited to achieve arbitrary code execution. The problem is caused b...
CVE-2015-8868
Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction function in Poppler before 0.40.0 allows remote attackers to cause a denial of service memory corruption and crash or possibly execute arbitrary code via an invalid blend mode in the ExtGState dictionary in a crafted PDF...
[SECURITY] [DLA 446-1] poppler security update
Package : poppler Version : 0.18.4-6+deb7u1 CVE ID : CVE-2015-8868 Debian Bug : 822578 A heap buffer overflow vulnerability was found in the poppler library. A maliciously crafted file could cause the application to crash. The issue happens when "ExtGState" is not a valid blend mode...
UBUNTU-CVE-2015-8868
Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction function in Poppler before 0.40.0 allows remote attackers to cause a denial of service memory corruption and crash or possibly execute arbitrary code via an invalid blend mode in the ExtGState dictionary in a crafted PDF...
CVE-2015-8868
Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction function in Poppler before 0.40.0 allows remote attackers to cause a denial of service memory corruption and crash or possibly execute arbitrary code via an invalid blend mode in the ExtGState dictionary in a crafted PDF...