20 matches found
CVE-2022-41844
An issue was discovered in Xpdf 4.04. There is a crash in XRef::fetchint, int, Object, int in xpdf/XRef.cc, a different vulnerability than CVE-2018-16369 and CVE-2019-16088...
Design/Logic Flaw
An issue was discovered in Xpdf 4.04. There is a crash in XRef::fetchint, int, Object, int in xpdf/XRef.cc, a different vulnerability than CVE-2018-16369 and CVE-2019-16088...
CVE-2022-41844
An issue was discovered in Xpdf 4.04. There is a crash in XRef::fetchint, int, Object, int in xpdf/XRef.cc, a different vulnerability than CVE-2018-16369 and CVE-2019-16088...
CVE-2022-41844
CVE-2022-41844 affects Xpdf 4.04, causing a crash in XRef::fetch(int, int, Object*, int) (xpdf/XRef.cc). It is distinguished from CVE-2018-16369 and CVE-2019-16088. Several advisories note fixes/upgrades; for mitigation, upgrading to a newer Xpdf version is recommended (e.g., >=app-text/xpdf-4...
CVE-2022-41844
An issue was discovered in Xpdf 4.04. There is a crash in XRef::fetchint, int, Object, int in xpdf/XRef.cc, a different vulnerability than CVE-2018-16369 and CVE-2019-16088...
CVE-2022-41844
An issue was discovered in Xpdf 4.04. There is a crash in XRef::fetchint, int, Object, int in xpdf/XRef.cc, a different vulnerability than CVE-2018-16369 and CVE-2019-16088...
PDF2JSON buffer overflow vulnerability
PDF2JSON is a Java-based code library that interacts PDF files with Json files. PDF2JSON has a buffer overflow vulnerability hole, which stems from a stack buffer overflow found in the component XRef::fetch. No detailed vulnerability details are currently available...
CVE-2020-23878
pdf2json v0.71 was discovered to contain a stack buffer overflow in the component XRef::fetch...
Stack overflow
pdf2json v0.71 was discovered to contain a stack buffer overflow in the component XRef::fetch...
CVE-2020-23878
Summary: CVE-2020-23878 affects pdf2json v0.71, with a stack buffer overflow in the XRef::fetch function. The vulnerability is documented across multiple feeds as a buffer overflow in a Java-based PDF-to-JSON library (pdf2json). Impact: CVSS metrics indicate high to critical severity (CVSS‑2.0: b...
CVE-2020-23878
pdf2json v0.71 was discovered to contain a stack buffer overflow in the component XRef::fetch...
PDF2JSON XRef::fetch Denial of Service Vulnerability
PDF2JSON is a conversion library based on XPDF 3.02 that can be used to convert PDF pages page by page to JSON and XML formats. A security vulnerability exists in the XRef::fetch function in PDF2JSON version 0.70. An attacker could exploit this vulnerability to cause a denial of service...
CVE-2020-19464
An issue has been found in function XRef::fetch in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to a stack overflow...
CVE-2019-16088
Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc...
CVE-2019-16088
Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc...
CVE-2019-16088
Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc...
CVE-2019-16088
Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc...
Code injection
XRef::fetch in XRef.cc in Xpdf 4.00 allows remote attackers to cause a denial of service stack consumption via a crafted pdf file, related to AcroForm::scanField, as demonstrated by pdftohtml. NOTE: this might overlap CVE-2018-7453...
CVE-2018-16369
XRef::fetch in XRef.cc in Xpdf 4.00 allows remote attackers to cause a denial of service stack consumption via a crafted pdf file, related to AcroForm::scanField, as demonstrated by pdftohtml. NOTE: this might overlap CVE-2018-7453...
CVE-2018-16369
CVE-2018-16369 affects Xpdf 4.00 (XRef::fetch) where a crafted PDF can cause a stack DoS via AcroForm::scanField, as demonstrated by pdftohtml. The vulnerability is noted to possibly overlap CVE-2018-7453 (infinite recursion in AcroForm::scanField). Multiple advisories (e.g., Slackware SSA:2024-0...