Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdfreader vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2019-13289
In Xpdf 4.01.01, there is a use-after-free vulnerability in the function JBIG2Stream::close() located at JBIG2Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool.
Glyphandcog Xpdfreader 4.01.01
5.5
CVSSv3
CVE-2019-10019
An issue exists in Xpdf 4.01.01. There is an FPE in the function PSOutputDev::checkPageSlice at PSOutputDev.cc for nStripes.
Xpdfreader Xpdf 4.01.01
7.8
CVSSv3
CVE-2019-14288
An issue exists in Xpdf 4.01.01. There is an Integer overflow in the function JBIG2Bitmap::combine at JBIG2Stream.cc for the "one byte per line" case.
Glyphandcog Xpdfreader 4.01.01
5.5
CVSSv3
CVE-2019-14290
An issue exists in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA==6 case 2.
Glyphandcog Xpdfreader 4.01.01
5.5
CVSSv3
CVE-2019-14294
An issue exists in Xpdf 4.01.01. There is a use-after-free in the function JPXStream::fillReadBuf at JPXStream.cc, due to an out of bounds read.
Glyphandcog Xpdfreader 4.01.01
5.5
CVSSv3
CVE-2022-41842
An issue exists in Xpdf 4.04. There is a crash in gfseek(_IO_FILE*, long, int) in goo/gfile.cc.
Xpdfreader Xpdf 4.04
NA
CVE-2009-0146
Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and previous versions, CUPS 1.3.9 and previous versions, and other products allow remote malicious users to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2SymbolDict::setBitmap and (2) J...
Glyphandcog Xpdfreader 3.01
Glyphandcog Xpdfreader 2.03
Glyphandcog Xpdfreader 2.02
Foolabs Xpdf 0.93b
Foolabs Xpdf 0.93a
Glyphandcog Xpdfreader 0.92
Foolabs Xpdf 0.91c
Glyphandcog Xpdfreader 0.6
Foolabs Xpdf 0.5a
Glyphandcog Xpdfreader
Glyphandcog Xpdfreader 3.00
Glyphandcog Xpdfreader 1.00
Foolabs Xpdf 0.93c
Foolabs Xpdf 0.92b
Foolabs Xpdf 0.92a
Glyphandcog Xpdfreader 0.80
Foolabs Xpdf 0.7a
Glyphandcog Xpdfreader 0.7
Glyphandcog Xpdfreader 2.01
Glyphandcog Xpdfreader 2.00
Glyphandcog Xpdfreader 0.93
Foolabs Xpdf 0.92e
NA
CVE-2009-0147
Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and previous versions, CUPS 1.3.9 and previous versions, and other products allow remote malicious users to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2Stream::readSymbolDictSeg, (2)...
Glyphandcog Xpdfreader
Glyphandcog Xpdfreader 3.00
Foolabs Xpdf 1.00a
Glyphandcog Xpdfreader 1.00
Foolabs Xpdf 0.92c
Foolabs Xpdf 0.92b
Glyphandcog Xpdfreader 0.80
Foolabs Xpdf 0.7a
Glyphandcog Xpdfreader 0.2
Glyphandcog Xpdfreader 2.00
Glyphandcog Xpdfreader 1.01
Foolabs Xpdf 0.92e
Foolabs Xpdf 0.92d
Glyphandcog Xpdfreader 0.91
Glyphandcog Xpdfreader 0.90
Glyphandcog Xpdfreader 0.4
Glyphandcog Xpdfreader 0.3
Glyphandcog Xpdfreader 2.02
Glyphandcog Xpdfreader 2.01
Foolabs Xpdf 0.93a
Glyphandcog Xpdfreader 0.93
Foolabs Xpdf 0.91b
7.8
CVSSv3
CVE-2022-38171
Xpdf prior to version 4.04 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIG2Stream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability...
Xpdfreader Xpdf 4.04
Freedesktop Poppler
1 Github repository
7.8
CVSSv3
CVE-2019-9878
There is an invalid memory access in the function GfxIndexedColorSpace::mapColorToBase() located in GfxState.cc in Xpdf 4.0.0, as used in pdfalto 0.2. It can be triggered by (for example) sending a crafted pdf file to the pdftops binary. It allows an malicious user to cause Denia...
Pdfalto Project Pdfalto 0.2
Xpdfreader Xpdf 4.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »