rpm package
suse/poppler&distro=SUSE Linux Enterprise Server 12 SP5
pkg:rpm/suse/poppler&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5
Vulnerabilities (41)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-13283 | — | < 0.43.0-16.22.1 | 0.43.0-16.22.1 | Jul 4, 2019 | In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in strncpy from FoFiType1::parse in fofi/FoFiType1.cc because it does not ensure the source string has a valid length before making a fixed-length copy. It can, for example, be triggered by sending a crafted PDF do | ||
| CVE-2019-12293 | — | < 0.43.0-16.25.1 | 0.43.0-16.25.1 | May 23, 2019 | In Poppler through 0.76.1, there is a heap-based buffer over-read in JPXStream::init in JPEG2000Stream.cc via data with inconsistent heights or widths. | ||
| CVE-2019-10872 | — | < 0.43.0-16.19.3 | 0.43.0-16.19.3 | Apr 5, 2019 | An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function Splash::blitTransparent at splash/Splash.cc. | ||
| CVE-2019-10871 | — | < 0.43.0-16.19.3 | 0.43.0-16.19.3 | Apr 5, 2019 | An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc. | ||
| CVE-2019-9903 | — | < 0.43.0-16.19.3 | 0.43.0-16.19.3 | Mar 21, 2019 | PDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict marking, leading to stack consumption in the function Dict::find() located at Dict.cc, which can (for example) be triggered by passing a crafted pdf file to the pdfunite binary. | ||
| CVE-2019-9631 | — | < 0.43.0-16.19.3 | 0.43.0-16.19.3 | Mar 8, 2019 | Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function. | ||
| CVE-2019-9545 | — | < 0.43.0-16.40.1 | 0.43.0-16.40.1 | Mar 1, 2019 | An issue was discovered in Poppler 0.74.0. A recursive function call, in JBIG2Stream::readTextRegion() located in JBIG2Stream.cc, can be triggered by sending a crafted pdf file to (for example) the pdfimages binary. It allows an attacker to cause Denial of Service (Segmentation f | ||
| CVE-2019-7310 | — | < 0.43.0-16.19.3 | 0.43.0-16.19.3 | Feb 3, 2019 | In Poppler 0.73.0, a heap-based buffer over-read (due to an integer signedness error in the XRef::getEntry function in XRef.cc) allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PDF document, as demons | ||
| CVE-2018-20662 | — | < 0.43.0-16.43.1 | 0.43.0-16.43.1 | Jan 3, 2019 | In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service (application crash caused by Object.h SIGABRT, because of a wrong return value from PDFDoc::setup) by crafting a PDF file in which an xref data structure is mishandled during extractPDFSub | ||
| CVE-2018-20650 | — | < 0.43.0-16.25.1 | 0.43.0-16.25.1 | Jan 1, 2019 | A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a check for the dict data type, as demonstrated by use of the FileSpec class (in FileSpec.cc) in pdfdetach. | ||
| CVE-2018-20481 | — | < 0.43.0-16.25.1 | 0.43.0-16.25.1 | Dec 26, 2018 | XRef::getEntry in XRef.cc in Poppler 0.72.0 mishandles unallocated XRef entries, which allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PDF document, when XRefEntry::setFlag in XRef.h is called from Parser::makeStream in Parser.cc. | ||
| CVE-2018-19149 | — | < 0.43.0-16.25.1 | 0.43.0-16.25.1 | Nov 10, 2018 | Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment. | ||
| CVE-2018-19060 | — | < 0.43.0-16.25.1 | 0.43.0-16.25.1 | Nov 7, 2018 | An issue was discovered in Poppler 0.71.0. There is a NULL pointer dereference in goo/GooString.h, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating a filename of an embedded file before constructing a save path. | ||
| CVE-2018-19059 | — | < 0.43.0-16.25.1 | 0.43.0-16.25.1 | Nov 7, 2018 | An issue was discovered in Poppler 0.71.0. There is a out-of-bounds read in EmbFile::save2 in FileSpec.cc, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating embedded files before save attempts. | ||
| CVE-2018-19058 | — | < 0.43.0-16.25.1 | 0.43.0-16.25.1 | Nov 7, 2018 | An issue was discovered in Poppler 0.71.0. There is a reachable abort in Object.h, will lead to denial of service because EmbFile::save2 in FileSpec.cc lacks a stream check before saving an embedded file. | ||
| CVE-2018-18897 | — | < 0.43.0-16.25.1 | 0.43.0-16.25.1 | Nov 2, 2018 | An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as demonstrated by pdftocairo. | ||
| CVE-2018-18456 | — | < 0.43.0-16.40.1 | 0.43.0-16.40.1 | Oct 18, 2018 | The function Object::isName() in Object.h (called from Gfx::opSetFillColorN) in Xpdf 4.00 allows remote attackers to cause a denial of service (stack-based buffer over-read) via a crafted pdf file, as demonstrated by pdftoppm. | ||
| CVE-2018-18454 | — | < 0.43.0-16.40.1 | 0.43.0-16.40.1 | Oct 18, 2018 | CCITTFaxStream::readRow() in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted pdf file, as demonstrated by pdftoppm. | ||
| CVE-2018-16646 | — | < 0.43.0-16.25.1 | 0.43.0-16.25.1 | Sep 6, 2018 | In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. | ||
| CVE-2018-13988 | — | < 0.43.0-16.25.1 | 0.43.0-16.25.1 | Jul 25, 2018 | Poppler through 0.62 contains an out of bounds read vulnerability due to an incorrect memory access that is not mapped in its memory space, as demonstrated by pdfunite. This can result in memory corruption and denial of service. This may be exploitable when a victim opens a speci |
- CVE-2019-13283Jul 4, 2019affected < 0.43.0-16.22.1fixed 0.43.0-16.22.1
In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in strncpy from FoFiType1::parse in fofi/FoFiType1.cc because it does not ensure the source string has a valid length before making a fixed-length copy. It can, for example, be triggered by sending a crafted PDF do
- CVE-2019-12293May 23, 2019affected < 0.43.0-16.25.1fixed 0.43.0-16.25.1
In Poppler through 0.76.1, there is a heap-based buffer over-read in JPXStream::init in JPEG2000Stream.cc via data with inconsistent heights or widths.
- CVE-2019-10872Apr 5, 2019affected < 0.43.0-16.19.3fixed 0.43.0-16.19.3
An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function Splash::blitTransparent at splash/Splash.cc.
- CVE-2019-10871Apr 5, 2019affected < 0.43.0-16.19.3fixed 0.43.0-16.19.3
An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc.
- CVE-2019-9903Mar 21, 2019affected < 0.43.0-16.19.3fixed 0.43.0-16.19.3
PDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict marking, leading to stack consumption in the function Dict::find() located at Dict.cc, which can (for example) be triggered by passing a crafted pdf file to the pdfunite binary.
- CVE-2019-9631Mar 8, 2019affected < 0.43.0-16.19.3fixed 0.43.0-16.19.3
Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function.
- CVE-2019-9545Mar 1, 2019affected < 0.43.0-16.40.1fixed 0.43.0-16.40.1
An issue was discovered in Poppler 0.74.0. A recursive function call, in JBIG2Stream::readTextRegion() located in JBIG2Stream.cc, can be triggered by sending a crafted pdf file to (for example) the pdfimages binary. It allows an attacker to cause Denial of Service (Segmentation f
- CVE-2019-7310Feb 3, 2019affected < 0.43.0-16.19.3fixed 0.43.0-16.19.3
In Poppler 0.73.0, a heap-based buffer over-read (due to an integer signedness error in the XRef::getEntry function in XRef.cc) allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PDF document, as demons
- CVE-2018-20662Jan 3, 2019affected < 0.43.0-16.43.1fixed 0.43.0-16.43.1
In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service (application crash caused by Object.h SIGABRT, because of a wrong return value from PDFDoc::setup) by crafting a PDF file in which an xref data structure is mishandled during extractPDFSub
- CVE-2018-20650Jan 1, 2019affected < 0.43.0-16.25.1fixed 0.43.0-16.25.1
A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a check for the dict data type, as demonstrated by use of the FileSpec class (in FileSpec.cc) in pdfdetach.
- CVE-2018-20481Dec 26, 2018affected < 0.43.0-16.25.1fixed 0.43.0-16.25.1
XRef::getEntry in XRef.cc in Poppler 0.72.0 mishandles unallocated XRef entries, which allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PDF document, when XRefEntry::setFlag in XRef.h is called from Parser::makeStream in Parser.cc.
- CVE-2018-19149Nov 10, 2018affected < 0.43.0-16.25.1fixed 0.43.0-16.25.1
Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment.
- CVE-2018-19060Nov 7, 2018affected < 0.43.0-16.25.1fixed 0.43.0-16.25.1
An issue was discovered in Poppler 0.71.0. There is a NULL pointer dereference in goo/GooString.h, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating a filename of an embedded file before constructing a save path.
- CVE-2018-19059Nov 7, 2018affected < 0.43.0-16.25.1fixed 0.43.0-16.25.1
An issue was discovered in Poppler 0.71.0. There is a out-of-bounds read in EmbFile::save2 in FileSpec.cc, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating embedded files before save attempts.
- CVE-2018-19058Nov 7, 2018affected < 0.43.0-16.25.1fixed 0.43.0-16.25.1
An issue was discovered in Poppler 0.71.0. There is a reachable abort in Object.h, will lead to denial of service because EmbFile::save2 in FileSpec.cc lacks a stream check before saving an embedded file.
- CVE-2018-18897Nov 2, 2018affected < 0.43.0-16.25.1fixed 0.43.0-16.25.1
An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as demonstrated by pdftocairo.
- CVE-2018-18456Oct 18, 2018affected < 0.43.0-16.40.1fixed 0.43.0-16.40.1
The function Object::isName() in Object.h (called from Gfx::opSetFillColorN) in Xpdf 4.00 allows remote attackers to cause a denial of service (stack-based buffer over-read) via a crafted pdf file, as demonstrated by pdftoppm.
- CVE-2018-18454Oct 18, 2018affected < 0.43.0-16.40.1fixed 0.43.0-16.40.1
CCITTFaxStream::readRow() in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted pdf file, as demonstrated by pdftoppm.
- CVE-2018-16646Sep 6, 2018affected < 0.43.0-16.25.1fixed 0.43.0-16.25.1
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.
- CVE-2018-13988Jul 25, 2018affected < 0.43.0-16.25.1fixed 0.43.0-16.25.1
Poppler through 0.62 contains an out of bounds read vulnerability due to an incorrect memory access that is not mapped in its memory space, as demonstrated by pdfunite. This can result in memory corruption and denial of service. This may be exploitable when a victim opens a speci
Page 2 of 3