112 matches found
SWFTools 缓冲区错误漏洞
SWFTools is a set of utilities for working with Adobe Flash files SWF files from the individual developer Matthias Kramm. A security vulnerability exists in SWFTools, which stems from a heap buffer overflow in the DCTStream::readHuffSymDCTHuffTable location of /xpdf/Stream.cc...
SWFTools 缓冲区错误漏洞
SWFTools is a set of utilities for working with Adobe Flash files SWF files from the individual developer Matthias Kramm. A security vulnerability exists in SWFTools, which originates from a stack overflow in the ImageStream::getPixelunsigned char location of /xpdf/Stream.cc...
CVE-2022-24106
In Xpdf prior to 4.04, the DCT JPEG decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc...
Integer overflow
In Xpdf prior to 4.04, the DCT JPEG decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc...
CVE-2022-24106
In Xpdf prior to 4.04, the DCT JPEG decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc...
CVE-2022-24106
In Xpdf prior to 4.04, the DCT JPEG decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc...
CVE-2022-24106
In Xpdf, prior to version 4.04, the DCT (JPEG) decoder allowed the 'interleaved' flag to be changed after the first scan, which creates an unknown integer-related vulnerability in Stream.cc. This issue is documented as CVE-2022-24106. Public advisories (e.g., Gentoo GLSA 202405-18 and Mageia MGAS...
CVE-2022-24106
In Xpdf prior to 4.04, the DCT JPEG decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc...
CVE-2022-24106
In Xpdf prior to 4.04, the DCT JPEG decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc...
CVE-2022-38238
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::lookChar at /xpdf/Stream.cc...
CVE-2022-38235
XPDF commit ffaf11c was discovered to contain a segmentation violation via DCTStream::getChar at /xpdf/Stream.cc...
CVE-2022-38237
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readScan at /xpdf/Stream.cc...
CVE-2022-38231
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::getChar at /xpdf/Stream.cc...
CVE-2022-38228
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::transformDataUnit at /xpdf/Stream.cc...
CVE-2022-38230
XPDF commit ffaf11c was discovered to contain a floating point exception FPE via DCTStream::decodeImage at /xpdf/Stream.cc...
CVE-2022-35104
SWFTools commit 772e55a2 was discovered to contain a heap-buffer overflow via DCTStream::reset at /xpdf/Stream.cc...
CVE-2022-35108
SWFTools commit 772e55a2 was discovered to contain a segmentation violation via DCTStream::getChar at /xpdf/Stream.cc...
CVE-2022-38233
XPDF commit ffaf11c was discovered to contain a segmentation violation via DCTStream::readMCURow at /xpdf/Stream.cc...
Heap overflow
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readHuffSymDCTHuffTable at /xpdf/Stream.cc...
CVE-2022-38238
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::lookChar at /xpdf/Stream.cc...