Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freedesktop vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2010-4654
poppler prior to 0.16.3 has malformed commands that may cause corruption of the internal stack.
Freedesktop Poppler
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
7.5
CVSSv2
CVE-2021-3185
A flaw was found in the gstreamer h264 component of gst-plugins-bad before v1.18.1 where when parsing a h264 header, an attacker could cause the stack to be smashed, memory corruption and possibly code execution.
Freedesktop Gst-plugins-bad
7.5
CVSSv2
CVE-2019-9631
Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function.
Freedesktop Poppler 0.74.0
Fedoraproject Fedora 28
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Debian Debian Linux 8.0
7.5
CVSSv2
CVE-2016-2090
Off-by-one vulnerability in the fgetwln function in libbsd prior to 0.8.2 allows malicious users to have unspecified impact via unknown vectors, which trigger a heap-based buffer overflow.
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Freedesktop Libbsd
Debian Debian Linux 8.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 14.04
7.5
CVSSv2
CVE-2013-4473
Stack-based buffer overflow in the extractPages function in utils/pdfseparate.cc in poppler prior to 0.24.2 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a source filename.
Freedesktop Poppler 0.22.4
Freedesktop Poppler 0.22.3
Freedesktop Poppler 0.1
Freedesktop Poppler 0.1.1
Freedesktop Poppler 0.11.3
Freedesktop Poppler 0.12.0
Freedesktop Poppler 0.12.1
Freedesktop Poppler 0.12.2
Freedesktop Poppler 0.12.3
Freedesktop Poppler 0.15.0
Freedesktop Poppler 0.15.1
Freedesktop Poppler 0.15.2
Freedesktop Poppler 0.15.3
Freedesktop Poppler 0.18.0
Freedesktop Poppler 0.18.1
Freedesktop Poppler 0.18.2
Freedesktop Poppler 0.18.3
Freedesktop Poppler 0.21.0
Freedesktop Poppler 0.21.1
Freedesktop Poppler 0.21.2
Freedesktop Poppler 0.21.3
Freedesktop Poppler 0.4.4
7.5
CVSSv2
CVE-2010-3702
The Gfx::getPos function in the PDF parser in xpdf prior to 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, CUPS, kdegraphics, and possibly other products allows context-dependent malicious users to cause a denial of service (crash) via unknown vectors that trigg...
Apple Cups
Freedesktop Poppler
Xpdfreader Xpdf
Xpdfreader Xpdf 3.02
Fedoraproject Fedora 12
Fedoraproject Fedora 13
Fedoraproject Fedora 14
Opensuse Opensuse 11.1
Opensuse Opensuse 11.2
Opensuse Opensuse 11.3
Suse Linux Enterprise Server 9
Suse Linux Enterprise Server 10
Suse Linux Enterprise Server 11
Debian Debian Linux 5.0
Debian Debian Linux 6.0
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Workstation 5.0
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
7.2
CVSSv2
CVE-2022-1215
A format string vulnerability was found in libinput
Freedesktop Libinput
Freedesktop Libinput 1.20.0
7.2
CVSSv2
CVE-2020-35512
A use-after-free flaw was found in D-Bus Development branch <= 1.13.16, dbus-1.12.x stable branch <= 1.12.18, and dbus-1.10.x and older branches <= 1.10.30 when a system has multiple usernames sharing the same UID. When a set of policy rules references these usernames, D...
Freedesktop Dbus 1.12.20
7.2
CVSSv2
CVE-2013-0292
The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib prior to 0.100.1 does not properly verify the sender of NameOwnerChanged signals, which allows local users to gain privileges via a spoofed signal.
Freedesktop Dbus-glib
Freedesktop Dbus-glib 0.98
Freedesktop Dbus-glib 0.84
Freedesktop Dbus-glib 0.82
Freedesktop Dbus-glib 0.92
Freedesktop Dbus-glib 0.90
Freedesktop Dbus-glib 0.76
Freedesktop Dbus-glib 0.74
Freedesktop Dbus-glib 0.88
Freedesktop Dbus-glib 0.86
Freedesktop Dbus-glib 0.73
Freedesktop Dbus-glib 0.72
Freedesktop Dbus-glib 0.96
Freedesktop Dbus-glib 0.94
Freedesktop Dbus-glib 0.80
Freedesktop Dbus-glib 0.78
1 EDB exploit
6.9
CVSSv2
CVE-2014-0004
Stack-based buffer overflow in udisks prior to 1.0.5 and 2.x prior to 2.1.3 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long mount point.
Freedesktop Udisks 2.1.0
Freedesktop Udisks 1.0.1
Freedesktop Udisks 1.0
Freedesktop Udisks 2.1.2
Freedesktop Udisks 2.0.90
Freedesktop Udisks 2.0.0
Freedesktop Udisks 2.0.1
Freedesktop Udisks 2.1.1
Freedesktop Udisks 2.0.91
Freedesktop Udisks
Freedesktop Udisks 2.0.92
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 12.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »