Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdfreader xpdf vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2022-38928
XPDF 4.04 is vulnerable to Null Pointer Dereference in FoFiType1C.cc:2393.
Xpdfreader Xpdf 4.04
7.8
CVSSv3
CVE-2022-38171
Xpdf prior to version 4.04 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIG2Stream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability...
Xpdfreader Xpdf 4.04
Freedesktop Poppler
1 Github repository
NA
CVE-2009-0146
Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and previous versions, CUPS 1.3.9 and previous versions, and other products allow remote malicious users to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2SymbolDict::setBitmap and (2) J...
Glyphandcog Xpdfreader 3.01
Glyphandcog Xpdfreader 2.03
Glyphandcog Xpdfreader 2.02
Foolabs Xpdf 0.93b
Foolabs Xpdf 0.93a
Glyphandcog Xpdfreader 0.92
Foolabs Xpdf 0.91c
Glyphandcog Xpdfreader 0.6
Foolabs Xpdf 0.5a
Glyphandcog Xpdfreader
Glyphandcog Xpdfreader 3.00
Glyphandcog Xpdfreader 1.00
Foolabs Xpdf 0.93c
Foolabs Xpdf 0.92b
Foolabs Xpdf 0.92a
Glyphandcog Xpdfreader 0.80
Foolabs Xpdf 0.7a
Glyphandcog Xpdfreader 0.7
Glyphandcog Xpdfreader 2.01
Glyphandcog Xpdfreader 2.00
Glyphandcog Xpdfreader 0.93
Foolabs Xpdf 0.92e
NA
CVE-2009-0147
Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and previous versions, CUPS 1.3.9 and previous versions, and other products allow remote malicious users to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2Stream::readSymbolDictSeg, (2)...
Glyphandcog Xpdfreader
Glyphandcog Xpdfreader 3.00
Foolabs Xpdf 1.00a
Glyphandcog Xpdfreader 1.00
Foolabs Xpdf 0.92c
Foolabs Xpdf 0.92b
Glyphandcog Xpdfreader 0.80
Foolabs Xpdf 0.7a
Glyphandcog Xpdfreader 0.2
Glyphandcog Xpdfreader 2.00
Glyphandcog Xpdfreader 1.01
Foolabs Xpdf 0.92e
Foolabs Xpdf 0.92d
Glyphandcog Xpdfreader 0.91
Glyphandcog Xpdfreader 0.90
Glyphandcog Xpdfreader 0.4
Glyphandcog Xpdfreader 0.3
Glyphandcog Xpdfreader 2.02
Glyphandcog Xpdfreader 2.01
Foolabs Xpdf 0.93a
Glyphandcog Xpdfreader 0.93
Foolabs Xpdf 0.91b
7.8
CVSSv3
CVE-2019-9878
There is an invalid memory access in the function GfxIndexedColorSpace::mapColorToBase() located in GfxState.cc in Xpdf 4.0.0, as used in pdfalto 0.2. It can be triggered by (for example) sending a crafted pdf file to the pdftops binary. It allows an malicious user to cause Denia...
Pdfalto Project Pdfalto 0.2
Xpdfreader Xpdf 4.0.0
7.5
CVSSv3
CVE-2020-35376
Xpdf 4.02 allows stack consumption because of an incorrect subroutine reference in a Type 1C font charstring, related to the FoFiType1C::getOp() function.
Xpdfreader Xpdf 4.02
Fedoraproject Fedora 32
Fedoraproject Fedora 33
5.5
CVSSv3
CVE-2020-25725
In Xpdf 4.02, SplashOutputDev::endType3Char(GfxState *state) SplashOutputDev.cc:3079 is trying to use the freed `t3GlyphStack->cache`, which causes an `heap-use-after-free` problem. The codes of a previous fix for nested Type 3 characters wasn't correctly handling the cas...
Xpdfreader Xpdf 4.02
Fedoraproject Fedora 32
Fedoraproject Fedora 33
NA
CVE-2009-0799
The JBIG2 decoder in Xpdf 3.02pl2 and previous versions, CUPS 1.3.9 and previous versions, Poppler prior to 0.10.6, and other products allows remote malicious users to cause a denial of service (crash) via a crafted PDF file that triggers an out-of-bounds read.
Glyphandcog Xpdfreader 3.00
Glyphandcog Xpdfreader 3.01
Glyphandcog Xpdfreader 1.00
Foolabs Xpdf 0.93c
Foolabs Xpdf 0.92b
Foolabs Xpdf 0.92a
Glyphandcog Xpdfreader 0.92
Foolabs Xpdf 0.7a
Glyphandcog Xpdfreader 0.7
Glyphandcog Xpdfreader 2.01
Glyphandcog Xpdfreader 2.00
Glyphandcog Xpdfreader 0.93
Foolabs Xpdf 0.92e
Foolabs Xpdf 0.91a
Glyphandcog Xpdfreader 0.91
Glyphandcog Xpdfreader 0.5
Glyphandcog Xpdfreader 0.4
Glyphandcog Xpdfreader 2.03
Glyphandcog Xpdfreader 2.02
Foolabs Xpdf 0.93b
Foolabs Xpdf 0.93a
Foolabs Xpdf 0.91c
NA
CVE-2009-0800
Multiple "input validation flaws" in the JBIG2 decoder in Xpdf 3.02pl2 and previous versions, CUPS 1.3.9 and previous versions, Poppler prior to 0.10.6, and other products allow remote malicious users to execute arbitrary code via a crafted PDF file.
Foolabs Xpdf 0.91c
Foolabs Xpdf 0.91b
Foolabs Xpdf 0.93b
Foolabs Xpdf 1.00a
Foolabs Xpdf 0.91a
Foolabs Xpdf 0.92e
Foolabs Xpdf 0.5a
Foolabs Xpdf 0.92b
Foolabs Xpdf 0.93c
Foolabs Xpdf 0.92c
Foolabs Xpdf 0.7a
Foolabs Xpdf 0.93a
Foolabs Xpdf 0.92d
Foolabs Xpdf 0.92a
Glyphandcog Xpdfreader 0.2
Glyphandcog Xpdfreader 0.3
Glyphandcog Xpdfreader 0.4
Glyphandcog Xpdfreader 0.5
Glyphandcog Xpdfreader 0.6
Glyphandcog Xpdfreader 0.80
Glyphandcog Xpdfreader 0.90
Glyphandcog Xpdfreader 1.00
NA
CVE-2009-1182
Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf 3.02pl2 and previous versions, CUPS 1.3.9 and previous versions, Poppler prior to 0.10.6, and other products allow remote malicious users to execute arbitrary code via a crafted PDF file.
Glyphandcog Xpdfreader
Glyphandcog Xpdfreader 1.01
Foolabs Xpdf 1.00a
Foolabs Xpdf 0.92d
Foolabs Xpdf 0.92c
Glyphandcog Xpdfreader 0.90
Glyphandcog Xpdfreader 0.80
Glyphandcog Xpdfreader 0.3
Glyphandcog Xpdfreader 0.2
Glyphandcog Xpdfreader 2.03
Glyphandcog Xpdfreader 2.02
Foolabs Xpdf 0.93b
Foolabs Xpdf 0.93a
Glyphandcog Xpdfreader 0.92
Foolabs Xpdf 0.91c
Foolabs Xpdf 0.91b
Glyphandcog Xpdfreader 0.6
Foolabs Xpdf 0.5a
Glyphandcog Xpdfreader 3.00
Glyphandcog Xpdfreader 3.01
Glyphandcog Xpdfreader 1.00
Foolabs Xpdf 0.93c
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »