Lucene search
K

18 matches found

Debian
Debian
added 2022/09/25 10:47 p.m.77 views

[SECURITY] [DLA 3120-1] poppler security update

Debian LTS Advisory DLA-3120-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany September 26, 2022 https://wiki.debian.org/LTS Package : poppler Version : 0.71.0-5+deb10u1 CVE ID : CVE-2018-18897 CVE-2018-19058 CVE-2018-20650 CVE-2019-9903 CVE-2019-9959...

7.8CVSS6.8AI score0.02682EPSS
Exploits7
OpenVAS
OpenVAS
added 2021/12/02 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2021:3854-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.7AI score0.03518EPSS
Exploits17References24
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.33 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : poppler Multiple Vulnerabilities (NS-SA-2020-0110)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has poppler packages installed that are affected by multiple vulnerabilities: - An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc...

8.8CVSS7AI score0.02527EPSS
Exploits2References5
Debian
Debian
added 2020/11/08 11:59 p.m.116 views

[SECURITY] [DLA 2440-1] poppler security update

Debian LTS Advisory DLA-2440-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany November 08, 2020 https://wiki.debian.org/LTS Package : poppler Version : 0.48.0-2+deb9u4 CVE ID : CVE-2017-14926 CVE-2017-14928 CVE-2018-19058 CVE-2018-20650 CVE-2018-20662 CVE-2019-73...

7.8CVSS6.7AI score0.02682EPSS
Exploits4
Amazon
Amazon
added 2020/08/24 12:0 a.m.46 views

Medium: poppler

Issue Overview: An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc. CVE-2019-10871 Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc.CVE-2018-21009 The JPXStream::init...

8.8CVSS8.2AI score0.02527EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2020/07/20 12:0 a.m.45 views

Amazon Linux AMI : poppler (ALAS-2020-1398)

The version of poppler installed on the remote host is prior to 0.26.5-42.20. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1398 advisory. The tiffdocumentrender and tiffdocumentgetthumbnail functions in the TIFF document backend in GNOME Evince through...

8.8CVSS7AI score0.02527EPSS
Exploits2References11
RedHat Linux
RedHat Linux
added 2020/03/31 9:13 p.m.56 views

Moderate: Red Hat Security Advisory: poppler and evince security update

An update for poppler and evince is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS6.9AI score0.02527EPSS
Exploits2References7
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for poppler (EulerOS-SA-2019-1986)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.01907EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for poppler (EulerOS-SA-2019-2015)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.01907EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/12/04 12:0 a.m.37 views

EulerOS 2.0 SP2 : poppler (EulerOS-SA-2019-2499)

According to the versions of the poppler packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - poppler since version 0.17.3 has been vulnerable to NULL pointer dereference in pdfunite triggered by specially crafted documents.CVE-2017-7511...

6.5CVSS6AI score0.0274EPSS
Exploits2References7
OpenVAS
OpenVAS
added 2019/10/18 12:0 a.m.134 views

Debian: Security Advisory (DLA-1963-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7AI score0.02486EPSS
Exploits1References3
OSV
OSV
added 2019/09/15 12:11 p.m.11 views

MGASA-2019-0276 Updated poppler packages fix security vulnerabilities

The updated packages fix security vulnerabilities: The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an...

6.5CVSS6.9AI score0.02486EPSS
Exploits1References3
Mageia
Mageia
added 2019/09/15 12:11 p.m.45 views

Updated poppler packages fix security vulnerabilities

The updated packages fix security vulnerabilities: The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an...

6.5CVSS1.4AI score0.02486EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2019/08/14 12:0 a.m.29 views

Fedora Update for poppler FEDORA-2019-8729e0edf5

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.5CVSS6.9AI score0.01907EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/08/13 12:0 a.m.37 views

Fedora 29 : poppler (2019-8729e0edf5)

Security fix for CVE-2019-9959. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network...

6.5CVSS6.5AI score0.01907EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/08/13 12:0 a.m.31 views

Fedora 30 : poppler (2019-69ec14786b)

Security fix for CVE-2019-9959. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network...

6.5CVSS6.5AI score0.01907EPSS
Exploits0References2
CVE
CVE
added 2019/07/22 2:18 p.m.235 views

CVE-2019-9959

CVE-2019-9959 affects Poppler (PDF rendering library); the root cause is an integer overflow in JPXStream::init due to not checking negative stream length, enabling allocation of a large heap memory chunk controlled by an attacker. Affected versions include Poppler 0.78.0 and earlier. Connected a...

6.5CVSS6.4AI score0.01907EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2019/07/22 2:18 p.m.22 views

CVE-2019-9959

The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo...

6.5CVSS7.6AI score0.01907EPSS
Exploits0
Rows per page
Query Builder