Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdf vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-24106
In Xpdf before 4.04, the DCT (JPEG) decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc.
Glyphandcog Xpdfreader
NA
CVE-2022-24107
Xpdf before 4.04 lacked an integer overflow check in JPXStream.cc.
Glyphandcog Xpdfreader
NA
CVE-2022-38784
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vu...
Freedesktop Poppler
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Fedoraproject Fedora 37
NA
CVE-2022-38171
Xpdf prior to version 4.04 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIG2Stream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability...
Xpdfreader Xpdf 4.04
Freedesktop Poppler
1 Github repository
NA
CVE-2022-38227
XPDF commit ffaf11c exists to contain a stack overflow via __asan_memcpy at asan_interceptors_memintrinsics.cpp.
Xpdf Project Xpdf 3.04
NA
CVE-2022-38228
XPDF commit ffaf11c exists to contain a heap-buffer overflow via DCTStream::transformDataUnit at /xpdf/Stream.cc.
Xpdf Project Xpdf 3.04
NA
CVE-2022-38229
XPDF commit ffaf11c exists to contain a heap-buffer overflow via DCTStream::readHuffSym(DCTHuffTable*) at /xpdf/Stream.cc.
Xpdf Project Xpdf 3.04
NA
CVE-2022-38230
XPDF commit ffaf11c exists to contain a floating point exception (FPE) via DCTStream::decodeImage() at /xpdf/Stream.cc.
Xpdf Project Xpdf 3.04
NA
CVE-2022-38231
XPDF commit ffaf11c exists to contain a heap-buffer overflow via DCTStream::getChar() at /xpdf/Stream.cc.
Xpdf Project Xpdf 3.04
NA
CVE-2022-38233
XPDF commit ffaf11c exists to contain a segmentation violation via DCTStream::readMCURow() at /xpdf/Stream.cc.
Xpdf Project Xpdf 3.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »