Poppler Security Vulnerabilities and Issues — Poppler CVE List

Lucene search

FreedesktopPoppler

4 matches found

CVE•added 2019/03/08 5:29 a.m.•233 views

CVE-2019-9631

Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function.

9.8CVSS6.8AI score0.02876EPSS

CVE•added 2019/03/21 6:29 p.m.•108 views

CVE-2019-9903

PDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict marking, leading to stack consumption in the function Dict::find() located at Dict.cc, which can (for example) be triggered by passing a crafted pdf file to the pdfunite binary.

6.5CVSS6.3AI score0.00508EPSS

CVE•added 2019/03/01 7:29 p.m.•57 views

CVE-2019-9543

An issue was discovered in Poppler 0.74.0. A recursive function call, in JBIG2Stream::readGenericBitmap() located in JBIG2Stream.cc, can be triggered by sending a crafted pdf file to (for example) the pdfseparate binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possi...

8.8CVSS7.5AI score0.00584EPSS

CVE•added 2019/03/01 7:29 p.m.•51 views

CVE-2019-9545

An issue was discovered in Poppler 0.74.0. A recursive function call, in JBIG2Stream::readTextRegion() located in JBIG2Stream.cc, can be triggered by sending a crafted pdf file to (for example) the pdfimages binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly h...

8.8CVSS7.5AI score0.00255EPSS