3121 matches found
SUSE CVE-2023-26930
Buffer Overflow vulnerability found in XPDF v.4.04 allows an attacker to cause a Denial of Service via the PDFDoc malloc in the pdftotext.cc function. NOTE: Vendor states “it's an expected abort on out-of-memory error.”...
Linux Distros Unpatched Vulnerability : CVE-2026-4407
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out-of-bounds array write in Xpdf 4.06 and earlier, due to incorrect validation of the N field in ICCBased color spaces. CVE-2026-4407 Note that Nessus relies o...
EUVD-2026-12995
Out-of-bounds array write in Xpdf 4.06 and earlier, due to incorrect validation of the "N" field in ICCBased color spaces...
CVE-2026-4407
Out-of-bounds array write in Xpdf 4.06 and earlier, due to incorrect validation of the "N" field in ICCBased color spaces...
UBUNTU-CVE-2026-4407
Out-of-bounds array write in Xpdf 4.06 and earlier, due to incorrect validation of the "N" field in ICCBased color spaces...
CVE-2026-4407
Out-of-bounds array write in Xpdf 4.06 and earlier, due to incorrect validation of the "N" field in ICCBased color spaces...
CVE-2026-4407 Out-of-bounds array write in Xpdf 4.06 due to missing validation
Out-of-bounds array write in Xpdf 4.06 and earlier, due to incorrect validation of the "N" field in ICCBased color spaces...
CVE-2026-4407
Out-of-bounds array write in Xpdf 4.06 and earlier, due to incorrect validation of the "N" field in ICCBased color spaces...
CVE-2026-4407 Out-of-bounds array write in Xpdf 4.06 due to missing validation
Out-of-bounds array write in Xpdf 4.06 and earlier, due to incorrect validation of the "N" field in ICCBased color spaces...
CVE-2026-4407
Out-of-bounds array write in Xpdf 4.06 and earlier, due to incorrect validation of the "N" field in ICCBased color spaces...
CVE-2026-4407
The CVE-2026-4407 issue affects Xpdf 4.06 and earlier, caused by an out-of-bounds array write stemming from incorrect validation of the “N” field in ICCBased color spaces. The vulnerability is rooted in input validation for ICCBased color space handling, leading to potential memory access issues....
Xpdf 安全漏洞
Xpdf is a free PDF viewer and toolkit provided by Xpdf Inc., including text extractors, image converters, HTML converters, etc. Versions of Xpdf 4.06 and earlier have security vulnerabilities, which stem from improper validation of the N field in the ICC based color space, potentially leading to...
PT-2026-26161
CVE-2026-4407 Out-of-bounds array write in Xpdf 4.06 and earlier, due to incorrect validation of the "N" field in ICCBased color spaces. https://t.co/6EPmHSJwhy...
NewStart CGSL MAIN 6.06 (SP) : cups Multiple Vulnerabilities (NS-SA-2026-0005)
The remote NewStart CGSL host, running version MAIN 6.06 SP, has cups packages installed that are affected by multiple vulnerabilities: - ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute values with invalid string data types, which allows remote attackers t...
Ubuntu: Security Advisory (USN-7985-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS : TeX Live vulnerabilities (USN-7985-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7985-1 advisory. Shin Ando discovered that the Xpdf toolkit embedded in TeX Live incorrectly handled memory when decoding certain data...
USN-7985-1: TeX Live vulnerabilities
Shin Ando discovered that the Xpdf toolkit embedded in TeX Live incorrectly handled memory when decoding certain data streams. An attacker could possibly use this issue to cause TeX Live to crash, resulting in a denial of service, or execute arbitrary code. This issue only affected Ubuntu 20.04 L...
USN-7985-1 texlive-bin vulnerabilities
Shin Ando discovered that the Xpdf toolkit embedded in TeX Live incorrectly handled memory when decoding certain data streams. An attacker could possibly use this issue to cause TeX Live to crash, resulting in a denial of service, or execute arbitrary code. This issue only affected Ubuntu 20.04 L...
CVE-2022-38228
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::transformDataUnit at /xpdf/Stream.cc...
CVE-2022-38237
XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::readScan at /xpdf/Stream.cc...