27 matches found
CVE-2022-38237
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readScan at /xpdf/Stream.cc...
SUSE CVE-2018-18457
The function DCTStream::readScan in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted pdf file, as demonstrated by pdftoppm...
SUSE CVE-2019-13291
In Xpdf 4.01.01, there is a heap-based buffer over-read in the function DCTStream::readScan located at Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It might allow an attacker to cause Information Disclosure...
SUSE CVE-2022-38237
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readScan at /xpdf/Stream.cc...
CVE-2022-38237
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readScan at /xpdf/Stream.cc...
CVE-2022-38237
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readScan at /xpdf/Stream.cc...
CVE-2022-38237
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readScan at /xpdf/Stream.cc...
UBUNTU-CVE-2022-38237
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readScan at /xpdf/Stream.cc...
CVE-2022-38237
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readScan at /xpdf/Stream.cc...
Heap overflow
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readScan at /xpdf/Stream.cc...
CVE-2022-38237
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readScan at /xpdf/Stream.cc...
CVE-2022-38237
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readScan at /xpdf/Stream.cc...
CVE-2022-38237
XPDF contains a heap-buffer overflow in DCTStream::readScan() triggered by commit ffaf11c in /xpdf/Stream.cc. Affects the XPDF component; the CVE-2022-38237 entry has a CVSS v3.1 base score of 7.8 (HIGH) with LOCAL attack vector, low attack complexity, no privileges required, but user interaction...
XPDF 缓冲区错误漏洞
XPDF is an open source PDF reader from FOO Labs. The product supports decoding files in LZW compressed format and reading encrypted PDF files. XPDF commit id ffaf11c has a security vulnerability that originates from DCTStream::readScan in /xpdf/Stream.cc contains a heap buffer overflow...
Xpdf heap buffer overflow vulnerability (CNVD-2019-21459)
Xpdf is an open source PDF reader from Foo Labs. The product supports decoding LZW compressed format files and read encrypted PDF files. A buffer overflow vulnerability exists in the 'DCTStream::readScan' function of the Stream.cc file in Xpdf version 4.01.01. The vulnerability stems from a...
CVE-2019-13291
In Xpdf 4.01.01, there is a heap-based buffer over-read in the function DCTStream::readScan located at Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It might allow an attacker to cause Information Disclosure...
CVE-2019-13291
In Xpdf 4.01.01, there is a heap-based buffer over-read in the function DCTStream::readScan located at Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It might allow an attacker to cause Information Disclosure...
UBUNTU-CVE-2019-13291
In Xpdf 4.01.01, there is a heap-based buffer over-read in the function DCTStream::readScan located at Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It might allow an attacker to cause Information Disclosure...
CVE-2019-13291
In Xpdf 4.01.01, there is a heap-based buffer over-read in the function DCTStream::readScan located at Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It might allow an attacker to cause Information Disclosure...
CVE-2019-13291
CVE-2019-13291 : In Xpdf 4.01.01, there is a heap-based buffer over-read in DCTStream::readScan() (Stream.cc). Triggered by processing a crafted PDF document via the pdftops tool, it may lead to information disclosure. Connected entries corroborate the same description. No remediation details are...