Astra Linux - уязвимость в poppler, poppler-22

libpoppler.so in Poppler through 24.12.0 has an out-of-bounds read vulnerability within the JBIG2Bitmap::combine function in JBIG2Stream.cc...

Out-of-bounds Read

libpoppler.so is vulnerable to Out-of-bounds Read. The vulnerability is due to improper handling of bitmap combinations within the JBIG2Bitmap::combine function in JBIG2Stream.cc, leading to potential memory access errors...

CVE-2024-56378

An out-of-bounds read exists within Poppler's JBIG2Bitmap::combine function in JBIG2Stream.cc. This flaw allows an attacker to crash the application via a carefully crafted pdf file. This issue can be triggered through the pdfimages utility...

Denial Of Service (DoS)

libpoppler.so is vulnerable to Denial Of Service DoS. The vulnerability exists in multiple functions at Gfx.cc due to a memory corruption reaching an infinite loop which allows an attacker to cause an application crash...

Denial Of Service (DoS)

libpoppler.so is vulnerable to Denial Of Service DoS. The vulnerability exists in convertToType0 function at FoFiType1C.cc due to a NULL pointer dereference which allows an attacker to cause an application crash...

Denial Of Service (DoS)

libpoppler.so is vulnerable to Denial of Service DoS. The vulnerability is due to a reachable assertion in the markObject function which allows an attacker to craft a malicious PDF file that will cause Poppler to crash...

Denial Of Service (DoS)

libpoppler.so is vulnerable to Denial of Service DoS. An infinite recursion in the Catalog::findDestInTree function allows an attacker to exploit this vulnerability by crafting a malicious PDF file that will cause the library to crash...

Denial Of Service (DoS)

libpoppler.so is vulnerable to Denial of Service DoS. The vulnerability exists in the readXRefTable function in XRef.cc because it does not properly validate the user-inputs, which allows an attacker to cause an application crash...

Denial Of Service (DoS)

libpoppler.so is vulnerable to Denial of Service DoS. The vulnerability exists in PDFDoc.cc because it does not properly handle the xref data structure, which allows an attacker to cause an application crash...

Denial Of Service (DoS)

libpoppler.so is vulnerable to Denial Of Service DoS. The vulnerability exists in the readGenericBitmap function of JBIG2Stream.cc, which allows an attacker to cause an application crash through the recursive function call by providing a maliciously crafted pdf file...

Denial Of Service (DoS)

libpoppler.so is vulnerable to Denial Of Service DoS. The vulnerability exists due to null-pointer deference in the FoFiType1C::convertToType function of fofi/FoFiType1C.cc, allowing an attacker to cause an application crash...

Denial Of Service (DoS)

libpoppler.so is vulnerable to Denial Of Service DoS. The vulnerability exists due to the heap buffer overflow in the FoFiType1C::cvtGlyph function of fofi/FoFiType1C.cc, allowing an attacker to cause an application crash...

Denial Of Service (DoS)

libpoppler.so is vulnerable to Denial Of Service DoS. The vulnerability exists due to the integer overflow in the readTextRegionSeg function in JBIG2Stream.cc, allowing an attacker to crash the application by providing a maliciously crafted PDF file or JBIG2 image...

Denial Of Service (DoS)

libpoppler.so is vulnerable to denial of service DoS. A null pointer dereference in the function SplashClip::clipAALine in splash/SplashClip.cc allows an attacker to crash the application...

Arbitrary Code Execution

libpoppler.so is vulnerable to arbitrary code execution. A heap-based buffer overflow in Splash::blitTransparent in splash/Splash.cc allows an attacker to execute arbitrary code...

Denial Of Service (DoS)

libpoppler.so is vulnerable to denial of service DoS. The attack can be triggered when a user sends a malicious image file to the function PSOutputDev::checkPageSlice at PSOutputDev.cc...

Denial Of Service (DoS)

libpoppler.so is vulnerable to denial of service DoS. The vulnerability exists because it does not limit the malicious pdfimages binary to JBIG2Stream::readTextRegion located in JBIG2Stream.cc, causing a segmentation fault...

Denial Of Service

libpoppler.so is susceptible to denial of service DoS. The lack of proper memory handling for negative XRef indices in the function XRef::getEntry in XRef.cc leads to huge integer overflow, allowing an attacker to crash the process using a malicious PDF input to pdftocairo...

Denial Of Service (DoS)

libpoppler.so is vulnerable to a denial of service DoS attack. A malicious user can pass a pdf file to the application to cause an infinite recursion, crashing the application...

Denial Of Service (DoS)

libpoppler.so is vulnerable to denial of service DoS attacks. A malicious user can pass an image file to the GfxImageColorMap::getGray function in GfxState.cc to cause a buffer over-read that can crash the application...