Arbitrary Code Execution

poppler is vulnerable to arbitrary code execution. A heap-based buffer underwrite in the function ImageStream::getLine in Stream.cc allows an attacker to crash the application or potentially execute arbitrary code on the system...

openSUSE Security Update : transfig (openSUSE-2019-1455)

This update for transfig fixes the following issues : Security issue fixed : - CVE-2018-16140: Fixed a buffer underwrite vulnerability in getline in read.c, which allowed an attacker to write prior to the beginning of the buffer via specially crafted .fig file bsc1106531 This update was imported...

OPENSUSE-SU-2019:1455-1 Security update for transfig

This update for transfig fixes the following issues: Security issue fixed: - CVE-2018-16140: Fixed a buffer underwrite vulnerability in getline in read.c, which allowed an attacker to write prior to the beginning of the buffer via specially crafted .fig file bsc1106531 This update was imported fr...

Security update for transfig (low)

openSUSE Security Update: Security update for transfig Announcement ID: openSUSE-SU-2019:1455-1 Rating: low References: 1106531 Cross-References: CVE-2018-16140 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This upda...

SUSE-SU-2019:1291-1 Security update for transfig

This update for transfig fixes the following issues: Security issue fixed: - CVE-2018-16140: Fixed a buffer underwrite vulnerability in getline in read.c, which allowed an attacker to write prior to the beginning of the buffer via specially crafted .fig file bsc1106531...

MGASA-2019-0117 Updated poppler packages fix security vulnerabilities

The updated poppler packages fix security vulnerabilities: In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service application crash caused by Object.h SIGABRT, because of a wrong return value from PDFDoc::setup by crafting a PDF file in which an xref data...

CVE-2019-9200

A heap-based buffer underwrite exists in ImageStream::getLine located at Stream.cc in Poppler 0.74.0 that can for example be triggered by sending a crafted PDF file to the pdfimages binary. It allows an attacker to cause Denial of Service Segmentation fault or possibly have unspecified other impa...

CVE-2019-9200

A heap-based buffer underwrite exists in ImageStream::getLine located at Stream.cc in Poppler 0.74.0 that can for example be triggered by sending a crafted PDF file to the pdfimages binary. It allows an attacker to cause Denial of Service Segmentation fault or possibly have unspecified other impa...

CVE-2019-9200

CVE-2019-9200: A heap-based buffer underwrite in ImageStream::getLine() (Stream.cc) in Poppler 0.74.0 can be triggered by a crafted PDF sent to pdfimages, leading to Denial of Service (segmentation fault) or possibly other impact. Connected advisories enumerate the issue across affected packages,...

UBUNTU-CVE-2019-9200

A heap-based buffer underwrite exists in ImageStream::getLine located at Stream.cc in Poppler 0.74.0 that can for example be triggered by sending a crafted PDF file to the pdfimages binary. It allows an attacker to cause Denial of Service Segmentation fault or possibly have unspecified other impa...

CVE-2018-17156

In FreeBSD before 11.2-STABLEr340268 and 11.2-RELEASE-p5, due to incorrectly accounting for padding on 64-bit platforms, a buffer underwrite could occur when constructing an ICMP reply packet when using a non-standard value for the net.inet.icmp.quotelen sysctl...

CVE-2018-17156

In FreeBSD before 11.2-STABLEr340268 and 11.2-RELEASE-p5, due to incorrectly accounting for padding on 64-bit platforms, a buffer underwrite could occur when constructing an ICMP reply packet when using a non-standard value for the net.inet.icmp.quotelen sysctl...

CVE-2018-17156

CVE-2018-17156 affects FreeBSD releases prior to 11.2-STABLE (r340268) and 11.2-RELEASE-p5. The issue stems from incorrect padding accounting on 64-bit platforms when constructing an ICMP reply packet using a non-standard value for net.inet.icmp.quotelen, which can lead to a buffer underwrite. Af...

CVE-2018-17156

In FreeBSD before 11.2-STABLEr340268 and 11.2-RELEASE-p5, due to incorrectly accounting for padding on 64-bit platforms, a buffer underwrite could occur when constructing an ICMP reply packet when using a non-standard value for the net.inet.icmp.quotelen sysctl...

CVE-2018-17156

Removed by vendor...

CVE-2018-16140

The fig2dev utility, as shipped with the transfig package, is vulnerable to one-byte buffer underwrite in getline function when processing specially crafted FIG file, having only minimal security impact in most situations...

CVE-2018-16140

A buffer underwrite vulnerability in getline read.c in fig2dev 3.2.7a allows an attacker to write prior to the beginning of the buffer via a crafted .fig file...

DEBIAN-CVE-2018-16140

A buffer underwrite vulnerability in getline read.c in fig2dev 3.2.7a allows an attacker to write prior to the beginning of the buffer via a crafted .fig file...

Buffer overflow

A buffer underwrite vulnerability in getline read.c in fig2dev 3.2.7a allows an attacker to write prior to the beginning of the buffer via a crafted .fig file...

CVE-2018-16140

A buffer underwrite vulnerability in getline read.c in fig2dev 3.2.7a allows an attacker to write prior to the beginning of the buffer via a crafted .fig file...