Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdf vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2010-0207
In xpdf, the xref table contains an infinite loop which allows remote malicious users to cause a denial of service (application crash) in xpdf-based PDF viewers.
Xpdfreader Xpdf 3.03-17
Xpdfreader Xpdf 3.04-4
Xpdfreader Xpdf 3.04-13
10
CVSSv2
CVE-2009-0165
Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and previous versions, as used in Poppler and other products, when running on Mac OS X, has unspecified impact, related to "g*allocn."
Foolabs Xpdf 0.91a
Glyphandcog Xpdfreader 0.90
Glyphandcog Xpdfreader 0.4
Glyphandcog Xpdfreader 0.3
Glyphandcog Xpdfreader 1.01
Foolabs Xpdf 0.93c
Foolabs Xpdf 0.92d
Foolabs Xpdf 0.92a
Foolabs Xpdf 0.92b
Glyphandcog Xpdfreader
Glyphandcog Xpdfreader 3.01
Glyphandcog Xpdfreader 0.91
Glyphandcog Xpdfreader 0.6
Foolabs Xpdf 0.5a
Glyphandcog Xpdfreader 2.03
Glyphandcog Xpdfreader 2.00
Foolabs Xpdf 0.92e
Glyphandcog Xpdfreader 0.93
Glyphandcog Xpdfreader 0.80
Foolabs Xpdf 0.7a
Glyphandcog Xpdfreader 0.92
Glyphandcog Xpdfreader 0.2
6.8
CVSSv2
CVE-2009-0195
Heap-based buffer overflow in Xpdf 3.02pl2 and previous versions, CUPS 1.3.9, and probably other products, allows remote malicious users to execute arbitrary code via a PDF file with crafted JBIG2 symbol dictionary segments.
Glyphandcog Xpdfreader
Glyphandcog Xpdfreader 0.90
Glyphandcog Xpdfreader 0.6
Foolabs Xpdf 0.5a
Foolabs Xpdf 0.92c
Foolabs Xpdf 0.92d
Glyphandcog Xpdfreader 2.02
Glyphandcog Xpdfreader 2.00
Glyphandcog Xpdfreader 3.00
Apple Cups 1.3.9
Glyphandcog Xpdfreader 0.4
Glyphandcog Xpdfreader 0.3
Glyphandcog Xpdfreader 0.92
Glyphandcog Xpdfreader 0.91
Foolabs Xpdf 0.92e
Glyphandcog Xpdfreader 1.00
Glyphandcog Xpdfreader 1.01
Foolabs Xpdf 0.93b
Glyphandcog Xpdfreader 0.93
Glyphandcog Xpdfreader 0.80
Foolabs Xpdf 0.7a
Glyphandcog Xpdfreader 0.5
4.3
CVSSv2
CVE-2011-1552
t1lib 5.1.2 and previous versions, as used in Xpdf prior to 3.02pl6, teTeX, and other products, reads from invalid memory locations, which allows remote malicious users to cause a denial of service (application crash) via a crafted Type 1 font in a PDF document, a different vulne...
T1lib T1lib 5.0.2
T1lib T1lib 5.0.1
T1lib T1lib 5.0.0
T1lib T1lib 0.7
T1lib T1lib 0.8
T1lib T1lib 5.1.1
T1lib T1lib 5.1.0
T1lib T1lib 0.5
T1lib T1lib 0.6
T1lib T1lib 1.0.1
T1lib T1lib 1.1.0
T1lib T1lib 0.1
T1lib T1lib 0.2
T1lib T1lib 0.9
T1lib T1lib 0.9.1
T1lib T1lib 1.3
T1lib T1lib 1.3.1
T1lib T1lib 0.3
T1lib T1lib 0.4
T1lib T1lib 0.9.2
T1lib T1lib 1.0
T1lib T1lib
4.3
CVSSv2
CVE-2011-1553
Use-after-free vulnerability in t1lib 5.1.2 and previous versions, as used in Xpdf prior to 3.02pl6, teTeX, and other products, allows remote malicious users to cause a denial of service (application crash) via a PDF document containing a crafted Type 1 font that triggers an inva...
T1lib T1lib 0.1
T1lib T1lib 0.2
T1lib T1lib 0.9.1
T1lib T1lib 0.9.2
T1lib T1lib 1.3.1
T1lib T1lib
T1lib T1lib 5.1.0
T1lib T1lib 5.0.2
T1lib T1lib 0.5
T1lib T1lib 0.6
T1lib T1lib 1.1.0
T1lib T1lib 1.1.1
T1lib T1lib 5.0.1
T1lib T1lib 5.0.0
T1lib T1lib 0.7
T1lib T1lib 0.8
T1lib T1lib 0.9
T1lib T1lib 1.2
T1lib T1lib 1.3
T1lib T1lib 5.1.1
T1lib T1lib 0.3
T1lib T1lib 0.4
4.3
CVSSv2
CVE-2011-1554
Off-by-one error in t1lib 5.1.2 and previous versions, as used in Xpdf prior to 3.02pl6, teTeX, and other products, allows remote malicious users to cause a denial of service (application crash) via a PDF document containing a crafted Type 1 font that triggers an invalid memory r...
T1lib T1lib 5.0.0
T1lib T1lib 0.1
T1lib T1lib 0.2
T1lib T1lib 0.9
T1lib T1lib 0.9.1
T1lib T1lib 1.3
T1lib T1lib 1.3.1
T1lib T1lib 0.3
T1lib T1lib 0.4
T1lib T1lib 0.9.2
T1lib T1lib 1.0
T1lib T1lib
T1lib T1lib 5.0.2
T1lib T1lib 5.0.1
T1lib T1lib 0.7
T1lib T1lib 0.8
T1lib T1lib 1.1.1
T1lib T1lib 1.2
T1lib T1lib 5.1.1
T1lib T1lib 5.1.0
T1lib T1lib 0.5
T1lib T1lib 0.6
6.8
CVSSv2
CVE-2011-0764
t1lib 5.1.2 and previous versions, as used in Xpdf prior to 3.02pl6, teTeX, and other products, uses an invalid pointer in conjunction with a dereference operation, which allows remote malicious users to execute arbitrary code via a crafted Type 1 font in a PDF document, as demon...
T1lib T1lib 5.0.2
T1lib T1lib 5.0.1
T1lib T1lib 0.6
T1lib T1lib 0.7
T1lib T1lib 1.1.1
T1lib T1lib 1.2
T1lib T1lib 0.2
T1lib T1lib 0.3
T1lib T1lib 0.9.1
T1lib T1lib 0.9.2
T1lib T1lib
T1lib T1lib 5.0.0
T1lib T1lib 0.1
T1lib T1lib 0.8
T1lib T1lib 0.9
T1lib T1lib 1.3
T1lib T1lib 1.3.1
T1lib T1lib 5.1.1
T1lib T1lib 5.1.0
T1lib T1lib 0.4
T1lib T1lib 0.5
T1lib T1lib 1.0
9.3
CVSSv2
CVE-2009-4035
The FoFiType1::parse function in fofi/FoFiType1.cc in Xpdf 3.0.0, gpdf 2.8.2, kpdf in kdegraphics 3.3.1, and possibly other libraries and versions, does not check the return value of the getNextLine function, which allows context-dependent malicious users to execute arbitrary cod...
Kde Kpdf 3.3.1
Kde Kdegraphics 3.3.1
Xpdf Xpdf 3.0.0
Gnome Gpdf 2.8.2
NA
CVE-2023-3044
An excessively large PDF page size (found in fuzz testing, unlikely in normal PDF files) can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large ch...
Xpdfreader Xpdf
1 Github repository
NA
CVE-2023-2663
In Xpdf 4.04 (and previous versions), a PDF object loop in the page label tree leads to infinite recursion and a stack overflow.
Xpdfreader Xpdf
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644
unprivileged
CVE-2024-3494
CVE-2024-22460
CVE-2024-26026
CVE-2024-23473
firewall
CVE-2024-28889
XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »