Xpdf Security Vulnerabilities and Issues — Xpdf CVE List

Lucene search

XpdfreaderXpdf

3 matches found

CVE•added 2022/05/09 6:15 p.m.•84 views

CVE-2022-30524

There is an invalid memory access in the TextLine class in TextOutputDev.cc in Xpdf 4.0.4 because the text extractor mishandles characters at large y coordinates. It can be triggered by (for example) sending a crafted pdf file to the pdftotext binary, which allows a remote attacker to cause a Denia...

7.8CVSS5.9AI score0.02094EPSS

CVE•added 2022/05/16 3:15 a.m.•71 views

CVE-2022-30775

xpdf 4.04 allocates excessive memory when presented with crafted input. This can be triggered by (for example) sending a crafted PDF document to the pdftoppm binary. It is most easily reproduced with the DCMAKE_CXX_COMPILER=afl-clang-fast++ option.

5.5CVSS5.5AI score0.00255EPSS

CVE•added 2022/05/18 3:15 p.m.•66 views

CVE-2021-27548

There is a Null Pointer Dereference vulnerability in the XFAScanner::scanNode() function in XFAScanner.cc in xpdf 4.03.

5.5CVSS5.6AI score0.00172EPSS