14 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-16927
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Xpdf 4.01.01 has an out-of-bounds write in the vertProfile part of the TextPage::findGaps function in TextOutputDev.cc, a different vulnerability than...
Glyph & Cog XpdfReader 安全漏洞
Glyph & Cog XpdfReader is a free PDF viewer and toolkit from Glyph & Cog. Includes text extractor, image converter, HTML converter and more. A security vulnerability exists in XPDF version v.4.04. An attacker has exploited this vulnerability to cause a system denial of service via the...
SUSE CVE-2019-9877
There is an invalid memory access vulnerability in the function TextPage::findGaps located at TextOutputDev.c in Xpdf 4.01, which can for example be triggered by sending a crafted pdf file to the pdftops binary. It allows an attacker to cause Denial of Service Segmentation fault or possibly have...
SUSE CVE-2019-16927
Xpdf 4.01.01 has an out-of-bounds write in the vertProfile part of the TextPage::findGaps function in TextOutputDev.cc, a different vulnerability than CVE-2019-9877...
CVE-2022-30524
There is an invalid memory access in the TextLine class in TextOutputDev.cc in Xpdf 4.0.4 because the text extractor mishandles characters at large y coordinates. It can be triggered by for example sending a crafted pdf file to the pdftotext binary, which allows a remote attacker to cause a Denia...
UBUNTU-CVE-2022-30524
There is an invalid memory access in the TextLine class in TextOutputDev.cc in Xpdf 4.0.4 because the text extractor mishandles characters at large y coordinates. It can be triggered by for example sending a crafted pdf file to the pdftotext binary, which allows a remote attacker to cause a Denia...
CVE-2022-30524
CVE-2022-30524 affects Xpdf: a malformed handling of characters at large y coordinates in TextOutputDev.cc TextLine leads to invalid memory access, triggering a Denial of Service (segmentation fault) or other impact when processing crafted PDFs (e.g., via pdftotext). Related entries (CVE-2023-304...
[ASA-201910-10] xpdf: arbitrary code execution
Arch Linux Security Advisory ASA-201910-10 ========================================== Severity: Medium Date : 2019-10-16 CVE-ID : CVE-2019-16927 Package : xpdf Type : arbitrary code execution Remote : No Link : https://security.archlinux.org/AVG-1048 Summary ======= The package xpdf before versio...
CVE-2019-16927
Xpdf 4.01.01 has an out-of-bounds write in the vertProfile part of the TextPage::findGaps function in TextOutputDev.cc, a different vulnerability than CVE-2019-9877...
CVE-2019-16927
Xpdf 4.01.01 has an out-of-bounds write in the vertProfile part of the TextPage::findGaps function in TextOutputDev.cc, a different vulnerability than CVE-2019-9877...
UBUNTU-CVE-2019-16927
Xpdf 4.01.01 has an out-of-bounds write in the vertProfile part of the TextPage::findGaps function in TextOutputDev.cc, a different vulnerability than CVE-2019-9877...
CVE-2019-16927
Xpdf 4.01.01 has an out-of-bounds write in the vertProfile part of the TextPage::findGaps function in TextOutputDev.cc, a different vulnerability than CVE-2019-9877...
Xpdf Invalid Memory Access Vulnerability
Xpdf is a free PDF viewer and toolkit that includes a text extractor, image converter, HTML converter and more. An invalid memory access vulnerability exists in the TextPage::findGaps function in TextOutputDev.c in Xpdf 4.01. An attacker can exploit this vulnerability by sending a specially craft...
Fedora 13 : poppler-0.12.4-6.fc13 (2010-15911)
Thu Oct 7 2010 Marek Kasik - 0.12.4-6 - Add poppler-0.12.4-CVE-2010-3702.patch Properly initialize parser - Add poppler-0.12.4-CVE-2010-3703.patch Properly initialize stack - Add poppler-0.12.4-CVE-2010-3704.patch Fix crash in broken pdf code - 0.12.4-5 - Accept 4-digit values in ToUnicode CMaps...