RSS   Vulnerabilities for 'Xpdfreader'   RSS

2019-10-01
 
CVE-2019-17064

CWE-476
 

 
Catalog.cc in Xpdf 4.02 has a NULL pointer dereference because Catalog.pageLabels is initialized too late in the Catalog constructor.

 
2019-09-08
 
CVE-2019-16115

CWE-119
 

 
In Xpdf 4.01.01, a stack-based buffer under-read could be triggered in IdentityFunction::transform in Function.cc, used by GfxAxialShading::getColor. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It allows an attacker to use a crafted PDF file to cause Denial of Service or possibly unspecified other impact.

 
2019-09-06
 
CVE-2019-16088

CWE-400
 

 
Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc.

 
2019-09-03
 
CVE-2019-15860

CWE-20
 

 
Xpdf 2.00 allows a SIGSEGV in XRef::constructXRef in XRef.cc. NOTE: 2.00 is a version from November 2002.

 
2019-07-27
 
CVE-2019-14294

CWE-416
 

 
An issue was discovered in Xpdf 4.01.01. There is a use-after-free in the function JPXStream::fillReadBuf at JPXStream.cc, due to an out of bounds read.

 
 
CVE-2019-14293

CWE-125
 

 
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA!=6 case 2.

 
 
CVE-2019-14292

CWE-125
 

 
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA!=6 case 1.

 
 
CVE-2019-14291

CWE-125
 

 
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA==6 case 3.

 
 
CVE-2019-14290

CWE-125
 

 
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA==6 case 2.

 
 
CVE-2019-14289

CWE-190
 

 
An issue was discovered in Xpdf 4.01.01. There is an integer overflow in the function JBIG2Bitmap::combine at JBIG2Stream.cc for the "multiple bytes per line" case.

 


Copyright 2019, cxsecurity.com

 

Back to Top