DEBIAN-CVE-2018-1000039

In Artifex MuPDF 1.12.0 and earlier, multiple heap use after free bugs in the PDF parser could allow an attacker to execute arbitrary code, read memory, or cause a denial of service via a crafted file...

PT-2018-9225 · Artifex +1 · Mupdf +1

Name of the Vulnerable Software and Affected Versions: Artifex MuPDF versions 1.12.0 and earlier Description: The issue allows an attacker to cause a denial of service via a crafted file, exploiting multiple reachable assertions in the PDF parser. Recommendations: For Artifex MuPDF versions 1.12....

GIMP gbr import parser heap buffer out-of-bounds read vulnerability

GIMP GNU Image Manipulation Program is a cross-platform open source image processing software developed by the GIMP team. The software enables a variety of image processing , including photo retouching , image compositing and image creation , etc. gbr import parser is one of the file import parse...

UBUNTU-CVE-2017-13052

The CFM parser in tcpdump before 4.9.2 has a buffer over-read in print-cfm.c:cfmprint...

CVE-2017-3019

CVE-2017-3019 affects Adobe Acrobat Reader up to versions 11.0.19, 15.006.30280, and 15.023.20070, where the PRC (Product Representation Compact) format parser contains a memory corruption flaw. Successful exploitation could lead to arbitrary code execution on a vulnerable host. The provided docu...

libarchive RAR Parser Null Pointer Access Vulnerability

libarchive is a multi-format archive and compression library. A security vulnerability exists in libarchive's RAR parser that can be exploited by an attacker to cause null pointer access...

PYSEC-2012-28

The ELF file parser in AhnLab V3 Internet Security 2011.01.18.00, Bitdefender 7.2, Quick Heal aka Cat QuickHeal 11.00, Command Antivirus 5.2.11.5, Comodo Antivirus 7424, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, F-Secure Anti-Virus 9.0.16160.0, McAfee Anti-Virus Scanning Engine 5.400.0.1158,...

xpdf: uninitialized Gfx::parser pointer dereference

The Gfx::getPos function in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, CUPS, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service crash via unknown vectors that trigger an uninitialized pointer...

DEBIAN-CVE-2010-1639

The clipdf function in libclamav/pdf.c in ClamAV before 0.96.1 allows remote attackers to cause a denial of service crash via a malformed PDF file, related to an inconsistency in the calculated stream length and the real stream length...

Mandriva Update for freetype2 MDVSA-2008:121 (freetype2)

Check for the Version of freetype2 OpenVAS Vulnerability Test Mandriva Update for freetype2 MDVSA-2008:121 freetype2 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...

CentOS Update for openoffice.org CESA-2008:0939 centos3 x86_64

Check for the Version of openoffice.org OpenVAS Vulnerability Test CentOS Update for openoffice.org CESA-2008:0939 centos3 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

Mozilla buffer overflow in http-index-format parser

The http-index-format MIME type parser nsDirIndexParser in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 does not check for an allocation failure, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an...

CVE-2008-0017

The http-index-format MIME type parser nsDirIndexParser in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 does not check for an allocation failure, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an...