CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

RedhatCVE•added 2026/01/09 10:57 a.m.•1 views

CVE-2022-38228

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::transformDataUnit at /xpdf/Stream.cc...

7.8CVSS7.5AI score0.00054EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:56 a.m.•2 views

CVE-2022-38229

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readHuffSymDCTHuffTable at /xpdf/Stream.cc...

7.8CVSS7.5AI score0.00052EPSS

Exploits1References1

Vulnrichment•added 2024/08/15 8:22 p.m.•17 views

CVE-2024-7868 Uninitialized variable in Xpdf 4.05 due to invalid JPEG header

In Xpdf 4.05 and earlier, invalid header info in a DCT JPEG stream can lead to an uninitialized variable in the DCT decoder. The proof-of-concept PDF file causes a segfault attempting to read from an invalid address...

2.1CVSS6.7AI score0.0024EPSS

Exploits0References1

SUSE CVE•added 2023/02/15 3:24 a.m.•1 views

SUSE CVE-2022-38228

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::transformDataUnit at /xpdf/Stream.cc...

7.8CVSS7.6AI score0.00054EPSS

Exploits1References3

ATTACKERKB•added 2022/08/16 9:15 p.m.•1 views

CVE-2022-38238

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::lookChar at /xpdf/Stream.cc...

7.8CVSS5.8AI score0.00054EPSS

Exploits1References2

ATTACKERKB•added 2022/08/16 9:15 p.m.•1 views

CVE-2022-38229

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readHuffSymDCTHuffTable at /xpdf/Stream.cc...

7.8CVSS5.8AI score0.00052EPSS

Exploits1References2

OSV•added 2022/08/16 9:15 p.m.•0 views

CVE-2022-38228

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::transformDataUnit at /xpdf/Stream.cc...

7.8CVSS5.8AI score

Exploits0References1

OSV•added 2022/08/16 9:15 p.m.•0 views

CVE-2022-38229

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readHuffSymDCTHuffTable at /xpdf/Stream.cc...

7.8CVSS5.8AI score

Exploits0References1

OSV•added 2022/08/16 9:15 p.m.•0 views

CVE-2022-38230

XPDF commit ffaf11c was discovered to contain a floating point exception FPE via DCTStream::decodeImage at /xpdf/Stream.cc...

5.5CVSS5.8AI score

Exploits0References1

ATTACKERKB•added 2022/08/16 9:15 p.m.•0 views

CVE-2022-35104

SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via DCTStream::reset at /xpdf/Stream.cc...

5.5CVSS6AI score0.00049EPSS

Exploits1References2

OSV•added 2022/08/16 9:15 p.m.•1 views

UBUNTU-CVE-2022-38235

XPDF commit ffaf11c was discovered to contain a segmentation violation via DCTStream::getChar at /xpdf/Stream.cc...

5.5CVSS5.8AI score0.00049EPSS

Exploits1References3

CNNVD•added 2022/08/16 12:0 a.m.•1 views

XPDF 安全漏洞

XPDF is an open source PDF reader from FOO Labs. The product supports decoding files in LZW compressed format and reading encrypted PDF files. XPDF has a security vulnerability that originates from DCTStream::decodeImage in /xpdf/Stream.cc contains a floating point exception FPE...

5.5CVSS5.7AI score0.00063EPSS

Exploits1References2

CNNVD•added 2022/08/16 12:0 a.m.•1 views

XPDF 缓冲区错误漏洞

XPDF is an open source PDF reader from FOO Labs. The product supports decoding files in LZW compressed format and reading encrypted PDF files. XPDF suffers from a buffer error vulnerability that stems from DCTStream::transformDataUnit in /xpdf/Stream.cc contains a heap buffer overflow...

7.8CVSS7.8AI score0.00054EPSS

Exploits1References2

Positive Technologies•added 2022/08/16 12:0 a.m.•1 views

PT-2022-24301 · Xpdf · Xpdf

Name of the Vulnerable Software and Affected Versions: XPDF affected versions not specified Description: A heap-buffer overflow issue was discovered in XPDF via the getChar function in DCTStream at /xpdf/Stream.cc. Recommendations: At the moment, there is no information about a newer version that...

7.8CVSS7.6AI score0.00052EPSS

Exploits1References6

CNNVD•added 2021/07/21 12:0 a.m.•1 views

Modesty Pdf2json 代码问题漏洞

Modesty Pdf2json is a Java-based code library from Modesty's personal developer that allows PDF files to interact with Json files. PDF2JSON version 0.70 has a security vulnerability that stems from an issue found in the function DCTStream::getChar, which could be used by an attacker to cause a...

5.5CVSS5.6AI score0.00138EPSS

Exploits1References2

Debian•added 2008/04/02 9:25 p.m.•42 views

[SECURITY] [DSA 1537-1] New xpdf packages fix multiple vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1537-1 [email protected] http://www.debian.org/security/ Devin Carraway April 02, 2008 http://www.debian.org/security/faq -...

9.3CVSS8.1AI score0.25469EPSS

Exploits1

RedHat Linux•added 2007/11/08 1:45 p.m.•4 views

DCTStream:: readProgressiveDataUnit()

Array index error in the DCTStream::readProgressiveDataUnit method in xpdf/Stream.cc in Xpdf 3.02pl1, as used in poppler, teTeX, KDE, KOffice, CUPS, and other products, allows remote attackers to trigger memory corruption and execute arbitrary code via a crafted PDF file...

7.6CVSS7.7AI score0.25469EPSS

Exploits1References4

OSV•added 2005/12/07 1:3 a.m.•0 views

DEBIAN-CVE-2005-3191

Multiple heap-based buffer overflows in the 1 DCTStream::readProgressiveSOF and 2 DCTStream::readBaselineSOF functions in the DCT stream parsing code Stream.cc in xpdf 3.01 and earlier, as used in products such as a Poppler, b teTeX, c KDE kpdf, d pdftohtml, e KOffice KWord, f CUPS, and g...

5.1CVSS7.5AI score0.03031EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by