XPDF 资源管理错误漏洞

XPDF is an open source PDF reader from FOO Labs. The product supports decoding files in LZW compressed format and reading encrypted PDF files. A security vulnerability exists in XPDF version 4.04, which stems from a reuse-after-release issue in JBIG2Stream::close in JBIG2Stream.cc, and can be...

poppler: heap-based buffer overflow in function ImageStream::getLine() in Stream.cc

A heap-based buffer underwrite exists in ImageStream::getLine located at Stream.cc in Poppler 0.74.0 that can for example be triggered by sending a crafted PDF file to the pdfimages binary. It allows an attacker to cause Denial of Service Segmentation fault or possibly have unspecified other impa...

PT-2019-19696 · Poppler +2 · Poppler +2

Name of the Vulnerable Software and Affected Versions: Poppler version 0.74.0 Description: An issue in the JBIG2Stream::readTextRegion function, located in JBIG2Stream.cc, can be triggered by sending a crafted pdf file. This allows an attacker to cause a Denial of Service Segmentation fault or...

UBUNTU-CVE-2019-9200

A heap-based buffer underwrite exists in ImageStream::getLine located at Stream.cc in Poppler 0.74.0 that can for example be triggered by sending a crafted PDF file to the pdfimages binary. It allows an attacker to cause Denial of Service Segmentation fault or possibly have unspecified other impa...