CVE-2010-3704
CVE-2010-3704 affects the PDF parsing code (FoFiType1.parse) in xpdf (before 3.02pl5) and in Poppler up to 0.15.1, kdegraphics, and related products. The vulnerability stems from a PostScript Type 1 font handling path that uses a crafted font containing a negative array index, bypassing input val...