Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Xpdfreader
(Glyphandcog)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 53 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2019-09-06 | CVE-2019-16088 | Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc. | Xpdfreader | 5.5 | ||
| 2019-09-03 | CVE-2019-15860 | Xpdf 2.00 allows a SIGSEGV in XRef::constructXRef in XRef.cc. NOTE: 2.00 is a version from November 2002. | Xpdfreader | 5.5 | ||
| 2019-07-27 | CVE-2019-14294 | An issue was discovered in Xpdf 4.01.01. There is a use-after-free in the function JPXStream::fillReadBuf at JPXStream.cc, due to an out of bounds read. | Xpdfreader | 5.5 | ||
| 2019-07-27 | CVE-2019-14293 | An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA!=6 case 2. | Xpdfreader | 5.5 | ||
| 2019-07-27 | CVE-2019-14292 | An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA!=6 case 1. | Xpdfreader | 5.5 | ||
| 2019-07-27 | CVE-2019-14291 | An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA==6 case 3. | Xpdfreader | 5.5 | ||
| 2019-07-27 | CVE-2019-14290 | An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA==6 case 2. | Xpdfreader | 5.5 | ||
| 2019-07-27 | CVE-2019-14289 | An issue was discovered in Xpdf 4.01.01. There is an integer overflow in the function JBIG2Bitmap::combine at JBIG2Stream.cc for the "multiple bytes per line" case. | Xpdfreader | 5.5 | ||
| 2019-07-27 | CVE-2019-14288 | An issue was discovered in Xpdf 4.01.01. There is an Integer overflow in the function JBIG2Bitmap::combine at JBIG2Stream.cc for the "one byte per line" case. | Xpdfreader | 7.8 | ||
| 2019-07-04 | CVE-2019-13289 | In Xpdf 4.01.01, there is a use-after-free vulnerability in the function JBIG2Stream::close() located at JBIG2Stream.cc. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. | Xpdfreader | 7.8 |