Lucene search
K

98 matches found

UbuntuCve
UbuntuCve
added 2022/08/30 4:15 a.m.38 views

CVE-2022-24106

In Xpdf prior to 4.04, the DCT JPEG decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc...

7.8CVSS7AI score0.00292EPSS
Exploits0References6
OSV
OSV
added 2022/08/30 4:15 a.m.4 views

UBUNTU-CVE-2022-24106

In Xpdf prior to 4.04, the DCT JPEG decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc...

7.8CVSS5.7AI score0.00292EPSS
Exploits0References7
CVE
CVE
added 2022/08/30 3:5 a.m.83 views

CVE-2022-24106

In Xpdf, prior to version 4.04, the DCT (JPEG) decoder allowed the 'interleaved' flag to be changed after the first scan, which creates an unknown integer-related vulnerability in Stream.cc. This issue is documented as CVE-2022-24106. Public advisories (e.g., Gentoo GLSA 202405-18 and Mageia MGAS...

7.8CVSS7.4AI score0.00292EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/08/30 3:5 a.m.36 views

CVE-2022-24106

In Xpdf prior to 4.04, the DCT JPEG decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc...

7.7AI score0.00292EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2022/08/30 3:5 a.m.23 views

CVE-2022-24106

In Xpdf prior to 4.04, the DCT JPEG decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc...

7.8CVSS7.5AI score0.00292EPSS
Exploits0
Debian CVE
Debian CVE
added 2022/08/30 3:5 a.m.30 views

CVE-2022-24106

In Xpdf prior to 4.04, the DCT JPEG decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc...

7.8CVSS7.5AI score0.00292EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/08/16 9:15 p.m.3 views

CVE-2022-38238

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::lookChar at /xpdf/Stream.cc...

7.8CVSS5.8AI score0.00324EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/08/16 9:15 p.m.3 views

CVE-2022-38229

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readHuffSymDCTHuffTable at /xpdf/Stream.cc...

7.8CVSS5.8AI score0.00327EPSS
Exploits1References2
OSV
OSV
added 2022/08/16 9:15 p.m.3 views

CVE-2022-38228

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::transformDataUnit at /xpdf/Stream.cc...

7.8CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2022/08/16 9:15 p.m.5 views

CVE-2022-38229

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readHuffSymDCTHuffTable at /xpdf/Stream.cc...

7.8CVSS5.8AI score0.00327EPSS
Exploits1References1
OSV
OSV
added 2022/08/16 9:15 p.m.4 views

CVE-2022-38230

XPDF commit ffaf11c was discovered to contain a floating point exception FPE via DCTStream::decodeImage at /xpdf/Stream.cc...

5.5CVSS5.8AI score0.00287EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/08/16 9:15 p.m.2 views

CVE-2022-35104

SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via DCTStream::reset at /xpdf/Stream.cc...

5.5CVSS6AI score0.00284EPSS
Exploits1References2
OSV
OSV
added 2022/08/16 9:15 p.m.44 views

UBUNTU-CVE-2022-38235

XPDF commit ffaf11c was discovered to contain a segmentation violation via DCTStream::getChar at /xpdf/Stream.cc...

5.5CVSS5.8AI score0.00287EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/08/16 12:0 a.m.4 views

XPDF 安全漏洞

XPDF is an open source PDF reader from FOO Labs. The product supports decoding files in LZW compressed format and reading encrypted PDF files. XPDF has a security vulnerability that originates from DCTStream::decodeImage in /xpdf/Stream.cc contains a floating point exception FPE...

5.5CVSS5.7AI score0.00287EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/08/16 12:0 a.m.5 views

XPDF 缓冲区错误漏洞

XPDF is an open source PDF reader from FOO Labs. The product supports decoding files in LZW compressed format and reading encrypted PDF files. XPDF suffers from a buffer error vulnerability that stems from DCTStream::transformDataUnit in /xpdf/Stream.cc contains a heap buffer overflow...

7.8CVSS7.8AI score0.00324EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/08/16 12:0 a.m.4 views

PT-2022-24301 · Xpdf · Xpdf

Name of the Vulnerable Software and Affected Versions: XPDF affected versions not specified Description: A heap-buffer overflow issue was discovered in XPDF via the getChar function in DCTStream at /xpdf/Stream.cc. Recommendations: At the moment, there is no information about a newer version that...

7.8CVSS7.6AI score0.00328EPSS
Exploits1References6
CNNVD
CNNVD
added 2021/07/21 12:0 a.m.4 views

Modesty Pdf2json 代码问题漏洞

Modesty Pdf2json is a Java-based code library from Modesty's personal developer that allows PDF files to interact with Json files. PDF2JSON version 0.70 has a security vulnerability that stems from an issue found in the function DCTStream::getChar, which could be used by an attacker to cause a...

5.5CVSS5.6AI score0.00634EPSS
Exploits1References2
NVD
NVD
added 2020/08/13 3:15 a.m.16 views

CVE-2020-8759

Improper access control in the installer for IntelR SSD DCT versions before 3.0.23 may allow a privileged user to potentially enable escalation of privilege via local access...

6.7CVSS6.7AI score0.00346EPSS
Exploits0References1
OSV
OSV
added 2020/08/13 3:15 a.m.4 views

CVE-2020-8759

Improper access control in the installer for IntelR SSD DCT versions before 3.0.23 may allow a privileged user to potentially enable escalation of privilege via local access...

6.7CVSS6.6AI score0.00346EPSS
Exploits0References1
Prion
Prion
added 2020/08/13 3:15 a.m.14 views

Improper access control

Improper access control in the installer for IntelR SSD DCT versions before 3.0.23 may allow a privileged user to potentially enable escalation of privilege via local access...

4.6CVSS6.6AI score0.00346EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder