29 matches found
RHEL 7 : poppler (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - poppler: heap buffer overflow in ExponentialFunction CVE-2015-8868 - poppler: recursive function call in...
Huawei EulerOS: Security Advisory for compat-poppler022 (EulerOS-SA-2021-1772)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP3 : compat-poppler022 (EulerOS-SA-2021-1772)
According to the version of the compat-poppler022 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction function in Poppler before 0.40.0 allows remote attackers to...
SUSE: Security Advisory (SUSE-SU-2016:1543-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP2 : compat-poppler022 (EulerOS-SA-2020-2335)
According to the version of the compat-poppler022 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction function in Poppler before 0.40.0 allows remote attackers to...
Huawei EulerOS: Security Advisory for compat-poppler022 (EulerOS-SA-2019-1803)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for poppler (EulerOS-SA-2016-1059)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP5 : compat-poppler022 (EulerOS-SA-2019-1803)
According to the version of the compat-poppler022 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction function in Poppler before 0.40.0 allows remote attackers to...
EulerOS 2.0 SP1 : poppler (EulerOS-SA-2016-1059)
According to the version of the poppler packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction function in Poppler before 0.40.0 allows remote attackers to cause a...
Scientific Linux Security Update : poppler on SL7.x x86_64 (20161103)
Security Fixes : - A heap-buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler such as Evince to crash or, potentially, execute arbitrary code when opened. CVE-2015-8868 Additional Changes : %NASLMINLEVEL...
CentOS 7 : poppler (CESA-2016:2580)
An update for poppler is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
Amazon Linux AMI : poppler (ALAS-2016-769)
A heap-buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash or, potentially, execute arbitrary code when opened. C Tenable Network Security, Inc. The descriptive text and package checks in this plug...
openSUSE Security Update : poppler (openSUSE-2016-745)
This update for poppler fixes the following issues : Security issues fixed : - CVE-2015-8868: Corrupted PDF file can corrupt heap, causing DoS bsc976844 This update was imported from the SUSE:SLE-12:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text a...
SUSE SLED12 / SLES12 Security Update : poppler (SUSE-SU-2016:1543-1)
This update for poppler fixes the following issues : Security issues fixed : - CVE-2015-8868: Corrupted PDF file can corrupt heap, causing DoS bsc976844 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted...
SUSE SLES11 Security Update : poppler (SUSE-SU-2016:1544-1)
This update for poppler fixes the following issues : Security issues fixed : - CVE-2015-8868: Corrupted PDF file can corrupt heap, causing DoS bsc976844 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted...
SUSE-SU-2016:1543-1 Security update for poppler
This update for poppler fixes the following issues: Security issues fixed: - CVE-2015-8868: Corrupted PDF file can corrupt heap, causing DoS bsc976844...
openSUSE Security Update : poppler (openSUSE-2016-595)
This update for poppler fixes the following issues : Security issues fixed : - CVE-2015-8868: Corrupted PDF file can corrupt heap, causing DoS boo976844 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Securit...
CVE-2015-8868
Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction function in Poppler before 0.40.0 allows remote attackers to cause a denial of service memory corruption and crash or possibly execute arbitrary code via an invalid blend mode in the ExtGState dictionary in a crafted PDF...
CVE-2015-8868
Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction function in Poppler before 0.40.0 allows remote attackers to cause a denial of service memory corruption and crash or possibly execute arbitrary code via an invalid blend mode in the ExtGState dictionary in a crafted PDF...
CVE-2015-8868
CVE-2015-8868 affects Poppler up to version 0.40.0, where a heap-based buffer overflow in ExponentialFunction::ExponentialFunction can be triggered by a crafted PDF ExtGState dictionary, leading to memory corruption, a crash, or potentially arbitrary code execution. Mitigation: upgrade Poppler to...