14 matches found
Astra Linux – Vulnerability in Poppler
In Poppler 0.72.0, a vulnerability exists in the dictLookup assertion that allows attackers to cause a denial of service due to the lack of a check for the dict data type. This vulnerability is demonstrated through the use of the FileSpec class in FileSpec.cc in the pdfdetach function...
PT-2025-40292
Name of the Vulnerable Software and Affected Versions Poppler versions 24.06.1 through 25.04.0 Description The software is susceptible to a stack consumption issue leading to a SIGSEGV signal. This occurs when processing PDF documents containing deeply nested structures within their metadata, suc...
PT-2023-35642 · Git +1 · Libxml2
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type identified as Global-buffer-overflow READ 1. The crash state involves several functions: xmlDictLookupInternal,...
SUSE CVE-2017-11097
When SWFTools 0.9.2 processes a crafted file in swfc, it can lead to a NULL Pointer Dereference in the dictlookup function in lib/q.c...
SUSE CVE-2017-14929
In Poppler 0.59.0, memory corruption occurs in a call to Object::dictLookup in Object.h after a repeating series of Gfx::display, Gfx::go, Gfx::execOp, Gfx::opFill, Gfx::doPatternFill, Gfx::doTilingPatternFill and Gfx::drawForm calls aka a Gfx.cc infinite loop, a different vulnerability than...
SUSE CVE-2018-20650
A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a check for the dict data type, as demonstrated by use of the FileSpec class in FileSpec.cc in pdfdetach...
poppler: reachable Object::dictLookup assertion in FileSpec class in FileSpec.cc
A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a check for the dict data type, as demonstrated by use of the FileSpec class in FileSpec.cc in pdfdetach...
poppler: reachable Object::dictLookup assertion in FileSpec class in FileSpec.cc
A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a check for the dict data type, as demonstrated by use of the FileSpec class in FileSpec.cc in pdfdetach...
UBUNTU-CVE-2018-20650
A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a check for the dict data type, as demonstrated by use of the FileSpec class in FileSpec.cc in pdfdetach...
PT-2018-3453 · Poppler +5 · Poppler +5
Name of the Vulnerable Software and Affected Versions: Poppler version 0.72.0 Description: The issue is related to a reachable Object::dictLookup assertion in Poppler, which allows attackers to cause a denial of service due to the lack of a check for the dict data type. This can be demonstrated b...
Unspecified vulnerability in libxml2 (CNVD-2017-38272)
libxml2 is the GNOME project team developed a C-based library for parsing XML documents, which supports multiple encoding formats, Xpath parsing, Well-formed and valid validation. A security vulnerability exists in the parser.c file in versions of libxml2 prior to 2.9.5, which stems from the...
Poppler Buffer Overflow Vulnerability
Poppler is a C++ class library for generating PDF, the library is inherited from Xpdf PDF reader. A buffer overflow vulnerability exists in the call to the 'Object::dictLookup' function in the Object.h file in Poppler version 0.59.0. An attacker can exploit this vulnerability to cause a denial of...
CVE-2017-11097
When SWFTools 0.9.2 processes a crafted file in swfc, it can lead to a NULL Pointer Dereference in the dictlookup function in lib/q.c...
UBUNTU-CVE-2017-11097
When SWFTools 0.9.2 processes a crafted file in swfc, it can lead to a NULL Pointer Dereference in the dictlookup function in lib/q.c...