21 matches found
JLSEC-2026-83
libpoppler.so in Poppler through 24.12.0 has an out-of-bounds read vulnerability within the JBIG2Bitmap::combine function in JBIG2Stream.cc...
poppler security update
20.11.0-13 - Check bitmap in combine - Resolves: RHEL-131786...
Oracle Linux 10 : poppler (ELSA-2026-0128)
The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-0128 advisory. 24.02.0-7 - Check bitmap in combine - Resolves: RHEL-131783, RHEL-131782 Tenable has extracted the preceding description block directly from the Oracle Linux...
CLSA-2025-1764868919 poppler: Fix of CVE-2025-32365
CVE-2025-32365: prevent out-of-bounds reads in JBIG2Bitmap::combine function in JBIG2Stream.cc...
CLSA-2025-1761261363 poppler: Fix of CVE-2025-32365
CVE-2025-32365: prevent out-of-bounds reads in JBIG2Bitmap::combine function in JBIG2Stream.cc...
EUVD-2019-5515
Malware in sbrugna...
EUVD-2024-53136
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2019-14289
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xpdf 4.01.01. There is an integer overflow in the function JBIG2Bitmap::combine at JBIG2Stream.cc for the multiple bytes per line cas...
UBUNTU-CVE-2025-32365
Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in JBIG2Stream.cc because of a misplaced isOk check...
Out-of-bounds Read
Overview Affected versions of this package are vulnerable to Out-of-bounds Read due to a misplaced isOk check in the JBIG2Bitmap::combine function. Remediation Upgrade poppler to version 25.11.0 or higher. References - Gitlab Commit - Gitlab Issues - Gitlab PR - Red Hat Bugzilla Bug...
CVE-2025-32365
Affected software: Poppler (PDF rendering library). Vulnerability: CVE-2025-32365 allows an out-of-bounds read in JBIG2Bitmap::combine within JBIG2Stream.cc due to a misplaced isOk check. Impact (per sources): high confidentiality impact and high availability impact; attack vector LOCAL, user int...
PHP Parser 安全漏洞
PHP Parser is a PHP parser written in PHP by Nikita Popov, a personal developer. A security vulnerability exists in PHP Parser version v3.2.1, which stems from the lib.combine function containing a prototype contamination vulnerability...
MGASA-2025-0022 Updated poppler packages fix security vulnerability
libpoppler.so has an out-of-bounds read vulnerability within the JBIG2Bitmap::combine function in JBIG2Stream.cc. CVE-2024-56378...
SUSE CVE-2024-56378
libpoppler.so in Poppler through 24.12.0 has an out-of-bounds read vulnerability within the JBIG2Bitmap::combine function in JBIG2Stream.cc...
CVE-2024-56378
libpoppler.so in Poppler through 24.12.0 has an out-of-bounds read vulnerability within the JBIG2Bitmap::combine function in JBIG2Stream.cc...
DEBIAN-CVE-2024-56378
libpoppler.so in Poppler through 24.12.0 has an out-of-bounds read vulnerability within the JBIG2Bitmap::combine function in JBIG2Stream.cc...
CVE-2024-56378
CVE-2024-56378 is an out-of-bounds read in the Poppler library (libpoppler.so) affecting releases up to 24.12.0, due to a flaw in JBIG2Bitmap::combine in JBIG2Stream.cc. Connected sources confirm the issue in Poppler and note public fixes in at least Debian LTS (DLA-4141-1) for Debian 11, where v...
CVE-2024-56378
libpoppler.so in Poppler through 24.12.0 has an out-of-bounds read vulnerability within the JBIG2Bitmap::combine function in JBIG2Stream.cc...
SUSE CVE-2019-14289
An issue was discovered in Xpdf 4.01.01. There is an integer overflow in the function JBIG2Bitmap::combine at JBIG2Stream.cc for the "multiple bytes per line" case...
Stack overflow
Stack-based buffer overflow in the fullpath function in misc.c for zoo 2.10 and earlier, as used in products such as Barracuda Spam Firewall, allows user-assisted attackers to execute arbitrary code via a crafted ZOO file that causes the combine function to return a longer string than expected...