CVE-2024-56378

An out-of-bounds read exists within Poppler's JBIG2Bitmap::combine function in JBIG2Stream.cc. This flaw allows an attacker to crash the application via a carefully crafted pdf file. This issue can be triggered through the pdfimages utility...

Denial Of Service (DoS)

libpoppler.so is vulnerable to Denial Of Service DoS. The vulnerability exists in the readGenericBitmap function of JBIG2Stream.cc, which allows an attacker to cause an application crash through the recursive function call by providing a maliciously crafted pdf file...

SUSE CVE-2022-38171

Xpdf prior to version 4.04 contains an integer overflow in the JBIG2 decoder JBIG2Stream::readTextRegionSeg in JBIG2Stream.cc. Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by...

Xpdf integer overflow vulnerability (CNVD-2019-26664)

Xpdf is a free PDF viewer and toolkit that includes a text extractor, image converter, HTML converter and more. An integer overflow vulnerability exists in the JBIG2Bitmap::combine function in JBIG2Stream.cc in Xpdf 4.01.01. An attacker can exploit this vulnerability to cause a denial of service...

Integer overflow

An issue was discovered in Xpdf 4.01.01. There is an Integer overflow in the function JBIG2Bitmap::combine at JBIG2Stream.cc for the "one byte per line" case...

CVE-2018-8102

The JBIG2MMRDecoder::getBlackCode function in JBIG2Stream.cc in xpdf 4.00 allows attackers to launch denial of service buffer over-read and application crash via a specific pdf file, as demonstrated by pdftohtml...

Amazon Linux AMI : poppler (ALAS-2017-902)

Stack-buffer overflow in GfxState.cc : A stack-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler such as Evince to crash, or potentially execute arbitrary code when opened. CVE-2017-9775 Integer...

CVE-2017-9776

Integer overflow leading to Heap buffer overflow in JBIG2Stream.cc in pdftocairo in Poppler before 0.56 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted PDF document...

Integer overflow

Integer overflow leading to Heap buffer overflow in JBIG2Stream.cc in pdftocairo in Poppler before 0.56 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted PDF document...

CVE-2017-9776

Poppler (pdftocairo) contains an integer overflow in JBIG2Stream.cc that can cause a heap-based buffer overflow, enabling DoS or potentially other impact via crafted PDFs. Public advisories (Debian DSA-4079-1/2, CentOS/RHEL RHSA-2550/2551, Mageia MGASA-2017-0276, AWS ALAS-2017-902) show this CVE ...

CVE-2017-9776

Integer overflow leading to Heap buffer overflow in JBIG2Stream.cc in pdftocairo in Poppler before 0.56 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted PDF document...

security flaw

Buffer overflow in the JBIG2Bitmap::JBIG2Bitmap function in JBIG2Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via unknown attack vectors...

security flaw

Buffer overflow in the JBIG2Bitmap::JBIG2Bitmap function in JBIG2Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via unknown attack vectors...

security flaw

Buffer overflow in the JBIG2Bitmap::JBIG2Bitmap function in JBIG2Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via unknown attack vectors...