9 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-11626
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the...
Mageia: Security Advisory (MGASA-2017-0237)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:3066-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12 Security Update : qpdf (SUSE-SU-2018:3066-2)
This update for qpdf fixes the following issues : qpdf was updated to 7.1.1. Security issues fixed : CVE-2017-11627: A stack-consumption vulnerability which allows attackers to cause DoS bsc1050577. CVE-2017-11625: A stack-consumption vulnerability which allows attackers to cause DoS bsc1050579...
SUSE SLED12 / SLES12 Security Update : qpdf (SUSE-SU-2018:3066-1)
This update for qpdf fixes the following issues : qpdf was updated to 7.1.1. Security issues fixed : CVE-2017-11627: A stack-consumption vulnerability which allows attackers to cause DoS bsc1050577. CVE-2017-11625: A stack-consumption vulnerability which allows attackers to cause DoS bsc1050579...
Fedora Update for qpdf FEDORA-2017-e58a762c3f
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated qpdf packages fix security vulnerabilities
This snapshot of the upstream development branch 6.0 of qpdf fixes several infinite loop vulnerabilities: CVE-2017-9208, CVE-2017-9209, CVE-2017-9210, CVE-2017-11624, CVE-2017-11625, CVE-2017-11626, CVE-2017-11627. For Mageia 5, the cups-filters package was also rebuilt against this new major...
CVE-2017-11626
A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in QPDFTokenizer.cc after four consecutive calls to QPDFObjectHandle::parseInternal, aka an "infinite...
CVE-2017-11626
CVE-2017-11626 affects libqpdf (QPDF 6.0.0) with a stack-consumption vulnerability in QPDFTokenizer::resolveLiteral() that can lead to denial of service via a crafted PDF. The issue stems from an infinite loop after parsing internal objects, potentially causing high CPU/stack usage. The related o...