Search CVE reports

Toggle filters

31 – 40 of 205 results

CVE-2010-4654

Medium priority
Needs evaluation

poppler before 0.16.3 has malformed commands that may cause corruption of the internal stack.

5 affected packages

koffice, ipe, libextractor, poppler, xpdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
koffice Not in release Not in release Not in release Not in release
ipe Needs evaluation Needs evaluation Needs evaluation Needs evaluation
libextractor Not affected Not affected Not affected Not affected
poppler Not affected Not affected Not affected Not affected
xpdf Not affected Not affected Not in release Not affected
Show less packages

CVE-2010-4653

Low priority
Ignored

An integer overflow condition in poppler before 0.16.3 can occur when parsing CharCodes for fonts.

5 affected packages

ipe, koffice, libextractor, poppler, xpdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ipe Not affected Not affected
koffice Not in release Not in release
libextractor Not affected Not affected
poppler Not affected Not affected
xpdf Not in release Not affected
Show less packages

CVE-2010-0207

Negligible priority
Ignored

In xpdf, the xref table contains an infinite loop which allows remote attackers to cause a denial of service (application crash) in xpdf-based PDF viewers.

6 affected packages

koffice, libextractor, poppler, xpdf, ipe, kdegraphics

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
koffice
libextractor
poppler
xpdf
ipe
kdegraphics
Show less packages

CVE-2010-0206

Negligible priority
Ignored

xpdf allows remote attackers to cause a denial of service (NULL pointer dereference and crash) in the way it processes JBIG2 PDF stream objects.

6 affected packages

ipe, kdegraphics, koffice, libextractor, poppler, xpdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ipe
kdegraphics
koffice
libextractor
poppler
xpdf
Show less packages

CVE-2019-17064

Medium priority
Needs evaluation

Catalog.cc in Xpdf 4.02 has a NULL pointer dereference because Catalog.pageLabels is initialized too late in the Catalog constructor.

3 affected packages

ipe, poppler, xpdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ipe Needs evaluation Needs evaluation Needs evaluation Needs evaluation
poppler Not affected Not affected Not affected Not affected
xpdf Not affected Not affected Not in release Not affected
Show less packages

CVE-2019-16927

Medium priority
Needs evaluation

Xpdf 4.01.01 has an out-of-bounds write in the vertProfile part of the TextPage::findGaps function in TextOutputDev.cc, a different vulnerability than CVE-2019-9877.

3 affected packages

poppler, xpdf, ipe

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
poppler Not affected Not affected Not affected Not affected
xpdf Not affected Not affected Not in release Not affected
ipe Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2019-16115

Medium priority
Needs evaluation

In Xpdf 4.01.01, a stack-based buffer under-read could be triggered in IdentityFunction::transform in Function.cc, used by GfxAxialShading::getColor. It can, for example, be triggered by sending a crafted PDF document to the...

3 affected packages

ipe, poppler, xpdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ipe Needs evaluation Needs evaluation Needs evaluation Needs evaluation
poppler Not affected Not affected Not affected Not affected
xpdf Not affected Not affected Not in release Not affected
Show less packages

CVE-2019-16088

Medium priority
Needs evaluation

Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc.

3 affected packages

ipe, poppler, xpdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ipe Needs evaluation Needs evaluation Needs evaluation Needs evaluation
poppler Not affected Not affected Not affected Not affected
xpdf Not affected Not affected Not in release Not affected
Show less packages

CVE-2018-21009

Low priority
Fixed

Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc.

1 affected package

poppler

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
poppler Not affected Fixed
Show less packages

CVE-2019-15860

Medium priority
Needs evaluation

Xpdf 2.00 allows a SIGSEGV in XRef::constructXRef in XRef.cc. NOTE: 2.00 is a version from November 2002.

3 affected packages

ipe, poppler, xpdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ipe Needs evaluation Needs evaluation Needs evaluation Needs evaluation
poppler Not affected Not affected Not affected Not affected
xpdf Not affected Not affected Not in release Not affected
Show less packages
  1. Previous page
  2. 2
  3. 3
  4. 4
  5. 5
  6. 6
  7. Next page
Export to JSON