Lucene search
+L

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2019-12360

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A stack-based buffer over-read exists in FoFiTrueType::dumpString in fofi/FoFiTrueType.cc in Xpdf 4.01.01. It can, for example, be triggered by sending crafted...

7.1CVSS7.3AI score0.0112EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.34 views

Mageia: Security Advisory (MGASA-2020-0291)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7.9AI score0.0112EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/02/22 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for poppler (EulerOS-SA-2021-1347)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.03518EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/01/20 12:0 a.m.35 views

EulerOS 2.0 SP3 : poppler (EulerOS-SA-2021-1112)

According to the versions of the poppler packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A stack-based buffer over-read exists in FoFiTrueType::dumpString in fofi/FoFiTrueType.cc in Xpdf 4.01.01. It can, for example, be triggered by...

8.8CVSS7.3AI score0.02527EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2020/12/15 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for poppler (EulerOS-SA-2020-2561)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.02527EPSS
Exploits1References2
Mageia
Mageia
added 2020/07/10 3:40 p.m.41 views

Updated xpdf packages fix security vulnerability

A stack-based buffer over-read exists in FoFiTrueType::dumpString in fofi/FoFiTrueType.cc in Xpdf 4.01.01. It can, for example, be triggered by sending crafted TrueType data in a PDF document to the pdftops tool. It might allow an attacker to cause Denial of Service or leak memory data into dump...

7.1CVSS2.6AI score0.0112EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/07/06 12:0 a.m.30 views

Fedora 31 : 1:xpdf (2020-de27bb80af)

Fix CVE-2019-12360. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security, In...

7.1CVSS7.2AI score0.0112EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2020/06/25 5:50 a.m.32 views

CVE-2019-12360

A stack-based buffer over-read flaw was found in the FoFiTrueType::dumpString in fofi/FoFiTrueType.cc in Xpdf, where it can be triggered by sending crafted TrueType data in a PDF document to the pdftops tool. This flaw allows an attacker to cause a denial of service or to leak memory data into du...

7.1CVSS3AI score0.0112EPSS
Exploits0References3
Debian
Debian
added 2019/06/06 11:26 a.m.162 views

[SECURITY] [DLA 1815-1] poppler security update

Package : poppler Version : 0.26.5-2+deb8u10 CVE ID : CVE-2019-10872 CVE-2019-12293 CVE-2019-12360 Several vulnerabilities have been found in the poppler PDF rendering library, which could result in denial of service or possibly other unspecified impact when processing malformed or maliciously...

8.8CVSS8.4AI score0.02708EPSS
Exploits2
OSV
OSV
added 2019/05/27 11:29 p.m.4 views

CVE-2019-12360

A stack-based buffer over-read exists in FoFiTrueType::dumpString in fofi/FoFiTrueType.cc in Xpdf 4.01.01. It can, for example, be triggered by sending crafted TrueType data in a PDF document to the pdftops tool. It might allow an attacker to cause Denial of Service or leak memory data into dump...

7.1CVSS7.2AI score
Exploits0References4
CVE
CVE
added 2019/05/27 10:1 p.m.145 views

CVE-2019-12360

CVE-2019-12360 affects Xpdf 4.01.01 via a stack-based buffer over-read in FoFiTrueType::dumpString (fofi/FoFiTrueType.cc). Triggered by crafted TrueType data in a PDF, it can cause Denial of Service or leak memory data into dump content when using the pdftops tool. Connected sources confirm the v...

7.1CVSS6.8AI score0.0112EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder