PT-2022-24301 · Xpdf · Xpdf

Name of the Vulnerable Software and Affected Versions: XPDF affected versions not specified Description: A heap-buffer overflow issue was discovered in XPDF via the getChar function in DCTStream at /xpdf/Stream.cc. Recommendations: At the moment, there is no information about a newer version that...

Modesty Pdf2json code issue vulnerability

Modesty Pdf2json is a Java-based code library from Modesty's personal developer that allows PDF files to interact with Json files. PDF2JSON version 0.70 has a security vulnerability that stems from an issue found in the function DCTStream::getChar, which could be used by an attacker to cause a...

CVE-2020-19468

An issue has been found in function EmbedStream::getChar in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to a null pointer derefenrece invalid read of size 8...

Null pointer dereference

An issue has been found in function DCTStream::getChar in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to a NULL pointer dereference invalid read of size 1...

Modesty Pdf2json 代码问题漏洞

PDF2JSON is a conversion library based on XPDF 3.02 that can be used to convert PDF pages page by page to JSON and XML formats. PDF2JSON EmbedStream::getChar suffers from a security vulnerability. An attacker could exploit this vulnerability to cause a denial of service...

Jsish Buffer Overflow Vulnerability (CNVD-2019-24378)

Jsish is a small JavaScript parser written in C with a built-in database . A buffer overflow vulnerability exists in the 'lexergetchar' function jsiLexer.c file in Jsish version 2.4.772.0477. The vulnerability stems from a networked system or product performing operations in memory without proper...

Vim and Neovim Arbitrary Code Execution Vulnerability

Vim is an editor for the UNIX platform.Neovim is a refactored version of Vim. An arbitrary code execution vulnerability exists in the Vim and Neovim getchar.c file, which allows remote attackers to exploit the vulnerability by submitting a special file request that induces the user to parse it,...

CVE-2019-12515

There is an out-of-bounds read vulnerability in the function FlateStream::getChar located at Stream.cc in Xpdf 4.01.01. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure or a denial of service...

CVE-2019-12515

There is an out-of-bounds read vulnerability in the function FlateStream::getChar located at Stream.cc in Xpdf 4.01.01. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure or a denial of service...

UBUNTU-CVE-2019-12515

There is an out-of-bounds read vulnerability in the function FlateStream::getChar located at Stream.cc in Xpdf 4.01.01. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure or a denial of service...

CVE-2019-12515

There is an out-of-bounds read vulnerability in the function FlateStream::getChar located at Stream.cc in Xpdf 4.01.01. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure or a denial of service...

CVE-2019-12515

There is an out-of-bounds read vulnerability in the function FlateStream::getChar located at Stream.cc in Xpdf 4.01.01. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It might allow an attacker to cause Information Disclosure or a denial of service...

unrar/unrar_fuzzer: Heap-buffer-overflow in Unpack::GetChar

Project: https://github.com/aawc/unrar.git Detailed report: https://oss-fuzz.com/testcase?key=6587195432370176 Project: unrar Fuzzer: libFuzzerunrarfuzzer Fuzz target binary: unrarfuzzer Job Type: libfuzzerasanunrar Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...