Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freedesktop poppler 0.54.0 vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2017-9865
The function GfxImageColorMap::getGray in GfxState.cc in Poppler 0.54.0 allows remote malicious users to cause a denial of service (stack-based buffer over-read and application crash) via a crafted PDF document, related to missing color-map validation in ImageOutputDev.cc.
Freedesktop Poppler 0.54.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
6.5
CVSSv3
CVE-2017-9406
In Poppler 0.54.0, a memory leak vulnerability was found in the function gmalloc in gmem.cc, which allows malicious users to cause a denial of service via a crafted file.
Freedesktop Poppler 0.54.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
6.5
CVSSv3
CVE-2017-9408
In Poppler 0.54.0, a memory leak vulnerability was found in the function Object::initArray in Object.cc, which allows malicious users to cause a denial of service via a crafted file.
Freedesktop Poppler 0.54.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
5.5
CVSSv3
CVE-2017-7511
poppler since version 0.17.3 has been vulnerable to NULL pointer dereference in pdfunite triggered by specially crafted documents.
Freedesktop Poppler 0.44.0
Freedesktop Poppler 0.28.1
Freedesktop Poppler 0.31.0
Freedesktop Poppler 0.23.1
Freedesktop Poppler 0.50.0
Freedesktop Poppler 0.24.4
Freedesktop Poppler 0.21.3
Freedesktop Poppler 0.22.5
Freedesktop Poppler 0.18.4
Freedesktop Poppler 0.22.3
Freedesktop Poppler 0.24.1
Freedesktop Poppler 0.26.5
Freedesktop Poppler 0.25.0
Freedesktop Poppler 0.24.0
Freedesktop Poppler 0.48.0
Freedesktop Poppler 0.20.1
Freedesktop Poppler 0.51.0
Freedesktop Poppler 0.17.3
Freedesktop Poppler 0.53.0
Freedesktop Poppler 0.34.0
Freedesktop Poppler 0.25.3
Freedesktop Poppler 0.39.0
6.5
CVSSv3
CVE-2017-9083
poppler 0.54.0, as used in Evince and other products, has a NULL pointer dereference in the JPXStream::readUByte function in JPXStream.cc. For example, the perf_test utility will crash (segmentation fault) when parsing an invalid PDF file.
Freedesktop Poppler 0.54.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started