SUSE CVE-2019-10021

An issue was discovered in Xpdf 4.01.01. There is an FPE in the function ImageStream::ImageStream at Stream.cc for nComps...

SWFTools 缓冲区错误漏洞

SWFTools is a set of utilities for working with Adobe Flash files SWF files from the individual developer Matthias Kramm. A security vulnerability exists in SWFTools that stems from a global buffer overflow in the DCTStream::transformDataUnit location of /xpdf/Stream.cc...

DEBIAN-CVE-2022-24106

In Xpdf prior to 4.04, the DCT JPEG decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc...

UBUNTU-CVE-2022-24106

In Xpdf prior to 4.04, the DCT JPEG decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc...

UBUNTU-CVE-2022-35104

SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via DCTStream::reset at /xpdf/Stream.cc...

CVE-2022-38229

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readHuffSymDCTHuffTable at /xpdf/Stream.cc...

CVE-2022-35108

CVE-2022-35108 concerns SWFTools, where a segmentation fault was reported in DCTStream::getChar() within /xpdf/Stream.cc. The core vulnerability is triggered by this function in SWFTools, as documented across multiple sources (e.g., NVD/NVB, Red Hat, Ubuntu, OSV, Nessus plugin, and related adviso...

UBUNTU-CVE-2019-10021

An issue was discovered in Xpdf 4.01.01. There is an FPE in the function ImageStream::ImageStream at Stream.cc for nComps...

Xpdf 'DCTStream::decodeImage' function out-of-bounds read vulnerability

Xpdf is Foo Labs developed an open source PDF reader , it supports decoding LZW compressed format files and read encrypted PDF files . Xpdf 4.00 version of the Stream.cc file in the 'DCTStream::decodeImage' function has an out-of-bounds read vulnerability. A remote attacker can exploit this...