Show filters
53 Total Results
Displaying 1-10 of 53
Sort by:
Attacker Value
Unknown
CVE-2021-40226
Disclosure Date: November 10, 2022 (last updated December 22, 2024)
xpdfreader 4.03 is vulnerable to Buffer Overflow.
0
Attacker Value
Unknown
CVE-2022-24107
Disclosure Date: April 18, 2022 (last updated November 29, 2024)
Xpdf prior to 4.04 lacked an integer overflow check in JPXStream.cc.
0
Attacker Value
Unknown
CVE-2022-24106
Disclosure Date: April 18, 2022 (last updated November 29, 2024)
In Xpdf prior to 4.04, the DCT (JPEG) decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc.
0
Attacker Value
Unknown
CVE-2019-17064
Disclosure Date: October 01, 2019 (last updated November 08, 2023)
Catalog.cc in Xpdf 4.02 has a NULL pointer dereference because Catalog.pageLabels is initialized too late in the Catalog constructor.
0
Attacker Value
Unknown
CVE-2019-16115
Disclosure Date: September 08, 2019 (last updated November 27, 2024)
In Xpdf 4.01.01, a stack-based buffer under-read could be triggered in IdentityFunction::transform in Function.cc, used by GfxAxialShading::getColor. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It allows an attacker to use a crafted PDF file to cause Denial of Service or possibly unspecified other impact.
0
Attacker Value
Unknown
CVE-2019-16088
Disclosure Date: September 06, 2019 (last updated November 27, 2024)
Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc.
0
Attacker Value
Unknown
CVE-2019-15860
Disclosure Date: September 03, 2019 (last updated November 27, 2024)
Xpdf 2.00 allows a SIGSEGV in XRef::constructXRef in XRef.cc. NOTE: 2.00 is a version from November 2002.
0
Attacker Value
Unknown
CVE-2019-14293
Disclosure Date: July 27, 2019 (last updated November 27, 2024)
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA!=6 case 2.
0
Attacker Value
Unknown
CVE-2019-14289
Disclosure Date: July 27, 2019 (last updated November 27, 2024)
An issue was discovered in Xpdf 4.01.01. There is an integer overflow in the function JBIG2Bitmap::combine at JBIG2Stream.cc for the "multiple bytes per line" case.
0
Attacker Value
Unknown
CVE-2019-14291
Disclosure Date: July 27, 2019 (last updated November 27, 2024)
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA==6 case 3.
0