SWFTools 缓冲区错误漏洞

SWFTools is a set of utilities for working with Adobe Flash files SWF files from the individual developer Matthias Kramm. A security vulnerability exists in SWFTools that originates from a heap buffer overflow in the GfxICCBasedColorSpace::getDefaultColorGfxColor location of /xpdf/GfxState.cc...

CVE-2019-14292

An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA!=6 case 1...

CVE-2019-14291

An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA==6 case 3...

PT-2019-13589 · Xpdf +1 · Xpdf +1

Name of the Vulnerable Software and Affected Versions: Xpdf version 4.01.01 Description: An issue was discovered in the function GfxPatchMeshShading::parse at GfxState.cc for the case where typeA is not equal to 6, specifically case 1, which leads to an out of bounds read. Recommendations: For Xp...

DEBIAN-CVE-2018-18897

An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as demonstrated by pdftocairo...

DEBIAN-CVE-2018-18455

The GfxImageColorMap class in GfxState.cc in Xpdf 4.00 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted pdf file, as demonstrated by pdftoppm...

Poppler Denial of Service Vulnerability (CNVD-2017-32544)

Poppler is a C++ class library for generating PDF, the library is inherited from Xpdf PDF reader. A denial of service vulnerability exists in the 'GfxImageColorMap::getGrayLine' function of the GfxState.cc file in Poppler version 0.59.0. A remote attacker can exploit this vulnerability with a...