There is an invalid memory access in the TextLine class in TextOutputDev.cc in Xpdf 4.0.4 because the text extractor mishandles characters at large y coordinates. It can be triggered by (for example) sending a crafted pdf file to the pdftotext binary, which allows a remote attacker to cause a Denia...
7.8CVSS
5.9AI Score
0.001EPSS
xpdf 4.04 allocates excessive memory when presented with crafted input. This can be triggered by (for example) sending a crafted PDF document to the pdftoppm binary. It is most easily reproduced with the DCMAKE_CXX_COMPILER=afl-clang-fast++ option.
5.5CVSS
5.5AI Score
0.001EPSS
XPDF v4.04 was discovered to contain a stack overflow vulnerability via the Object::Copy class of object.cc files.
7.8CVSS
7.7AI Score
0.001EPSS
XPDF v4.0.4 was discovered to contain a segmentation violation via the component /xpdf/AcroForm.cc:538.
5.5CVSS
5.5AI Score
0.001EPSS
Xpdf prior to version 4.04 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIG2Stream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2...
There is a use-after-free issue in JBIG2Stream::close() located in JBIG2Stream.cc in Xpdf 4.04. It can be triggered by sending a crafted PDF file to (for example) the pdfimages binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact.
7.8CVSS
7.9AI Score
0.001EPSS
XPDF v4.04 and earlier was discovered to contain a stack overflow via the function Catalog::countPageTree() at Catalog.cc.
5.5CVSS
5.8AI Score
0.001EPSS
7.8CVSS
6AI Score
0.001EPSS
An issue was discovered in Xpdf 4.04. There is a crash in gfseek(_IO_FILE*, long, int) in goo/gfile.cc.
5.5CVSS
5.5AI Score
0.001EPSS
An issue was discovered in Xpdf 4.04. There is a crash in convertToType0 in fofi/FoFiType1C.cc, a different vulnerability than CVE-2022-38928.
5.5CVSS
6AI Score
0.001EPSS
An issue was discovered in Xpdf 4.04. There is a crash in XRef::fetch(int, int, Object*, int) in xpdf/XRef.cc, a different vulnerability than CVE-2018-16369 and CVE-2019-16088.
5.5CVSS
5.5AI Score
0.002EPSS
A stack overflow in the Catalog::readPageLabelTree2(Object*) function of XPDF v4.04 allows attackers to cause a Denial of Service (DoS) via a crafted PDF file.
5.5CVSS
5.5AI Score
0.001EPSS
XPDF v4.04 was discovered to contain a stack overflow via the function FileStream::copy() at xpdf/Stream.cc:795.
5.5CVSS
5.8AI Score
0.001EPSS
Stack overflow vulnerability in function Dict::find in xpdf/Dict.cc in xpdf 4.04, allows local attackers to cause a denial of service.
5.5CVSS
5.5AI Score
0.0005EPSS
Stack overflow vulnerability in function gmalloc in goo/gmem.cc in xpdf 4.04, allows local attackers to cause a denial of service.
5.5CVSS
5.5AI Score
0.0005EPSS
An infinite recursion in Catalog::findDestInTree can cause denial of service for xpdf 4.02.
5.5CVSS
5.5AI Score
0.0004EPSS
In Xpdf 4.04 (and earlier), a bad color space object in the input PDF file can cause a divide-by-zero.
5.5CVSS
5.5AI Score
0.0004EPSS
In Xpdf 4.04 (and earlier), a PDF object loop in the page label tree leads to infinite recursion and a stack overflow.
5.5CVSS
5.4AI Score
0.0004EPSS
In Xpdf 4.04 (and earlier), a PDF object loop in the embedded file tree leads to infinite recursion and a stack overflow.
5.5CVSS
5.4AI Score
0.0004EPSS
Buffer Overflow vulnerability found in XPDF v.4.04 allows an attacker to cause a Denial of Service via the PDFDoc malloc in the pdftotext.cc function. NOTE: Vendor states “it's an expected abort on out-of-memory error.”
5.5CVSS
5.4AI Score
0.001EPSS
An excessively large PDF page size (found in fuzz testing, unlikely in normal PDF files) can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate.
3.3CVSS
5.1AI Score
0.001EPSS
Xpdf 4.04 will deadlock on a PDF object stream whose "Length" field is itself in another object stream.
3.3CVSS
4AI Score
0.0004EPSS
In Xpdf 4.05 (and earlier), a PDF object loop in a pattern resource leads to infinite recursion and a stack overflow.
5.5CVSS
6.5AI Score
0.0004EPSS
In Xpdf 4.05 (and earlier), very large coordinates in a page box can cause an integer overflow and divide-by-zero.
6.2CVSS
6.8AI Score
0.0004EPSS
In Xpdf 4.05 (and earlier), invalid header info in a DCT (JPEG) stream can lead to an uninitialized variable in the DCT decoder. The proof-of-concept PDF file causes a segfault attempting to read from an invalid address.
8.2CVSS
6.4AI Score
0.0005EPSS