rpm package
suse/poppler&distro=SUSE Linux Enterprise Server 15-LTSS
pkg:rpm/suse/poppler&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS
Vulnerabilities (21)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-27778 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Dec 3, 2020 | A flaw was found in Poppler in the way certain PDF files were converted into HTML. A remote attacker could exploit this flaw by providing a malicious PDF file that, when processed by the 'pdftohtml' program, would crash the application causing a denial of service. | ||
| CVE-2019-14494 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Aug 1, 2019 | An issue was discovered in Poppler through 0.78.0. There is a divide-by-zero error in the function SplashOutputDev::tilingPatternFill at SplashOutputDev.cc. | ||
| CVE-2019-9959 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Jul 22, 2019 | The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftoc | ||
| CVE-2019-10872 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Apr 5, 2019 | An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function Splash::blitTransparent at splash/Splash.cc. | ||
| CVE-2019-10871 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Apr 5, 2019 | An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc. | ||
| CVE-2019-9903 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Mar 21, 2019 | PDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict marking, leading to stack consumption in the function Dict::find() located at Dict.cc, which can (for example) be triggered by passing a crafted pdf file to the pdfunite binary. | ||
| CVE-2019-9631 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Mar 8, 2019 | Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function. | ||
| CVE-2019-9200 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Feb 26, 2019 | A heap-based buffer underwrite exists in ImageStream::getLine() located at Stream.cc in Poppler 0.74.0 that can (for example) be triggered by sending a crafted PDF file to the pdfimages binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have | ||
| CVE-2019-7310 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Feb 3, 2019 | In Poppler 0.73.0, a heap-based buffer over-read (due to an integer signedness error in the XRef::getEntry function in XRef.cc) allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PDF document, as demons | ||
| CVE-2018-20662 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Jan 3, 2019 | In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service (application crash caused by Object.h SIGABRT, because of a wrong return value from PDFDoc::setup) by crafting a PDF file in which an xref data structure is mishandled during extractPDFSub | ||
| CVE-2018-20650 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Jan 1, 2019 | A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a check for the dict data type, as demonstrated by use of the FileSpec class (in FileSpec.cc) in pdfdetach. | ||
| CVE-2018-20551 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Dec 28, 2018 | A reachable Object::getString assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to construction of invalid rich media annotation assets in the AnnotRichMedia class in Annot.c. | ||
| CVE-2018-20481 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Dec 26, 2018 | XRef::getEntry in XRef.cc in Poppler 0.72.0 mishandles unallocated XRef entries, which allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PDF document, when XRefEntry::setFlag in XRef.h is called from Parser::makeStream in Parser.cc. | ||
| CVE-2018-19149 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Nov 10, 2018 | Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment. | ||
| CVE-2018-19060 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Nov 7, 2018 | An issue was discovered in Poppler 0.71.0. There is a NULL pointer dereference in goo/GooString.h, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating a filename of an embedded file before constructing a save path. | ||
| CVE-2018-19059 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Nov 7, 2018 | An issue was discovered in Poppler 0.71.0. There is a out-of-bounds read in EmbFile::save2 in FileSpec.cc, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating embedded files before save attempts. | ||
| CVE-2018-19058 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Nov 7, 2018 | An issue was discovered in Poppler 0.71.0. There is a reachable abort in Object.h, will lead to denial of service because EmbFile::save2 in FileSpec.cc lacks a stream check before saving an embedded file. | ||
| CVE-2018-18897 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Nov 2, 2018 | An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as demonstrated by pdftocairo. | ||
| CVE-2018-16646 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Sep 6, 2018 | In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. | ||
| CVE-2018-13988 | — | < 0.62.0-4.6.1 | 0.62.0-4.6.1 | Jul 25, 2018 | Poppler through 0.62 contains an out of bounds read vulnerability due to an incorrect memory access that is not mapped in its memory space, as demonstrated by pdfunite. This can result in memory corruption and denial of service. This may be exploitable when a victim opens a speci |
- CVE-2020-27778Dec 3, 2020affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
A flaw was found in Poppler in the way certain PDF files were converted into HTML. A remote attacker could exploit this flaw by providing a malicious PDF file that, when processed by the 'pdftohtml' program, would crash the application causing a denial of service.
- CVE-2019-14494Aug 1, 2019affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
An issue was discovered in Poppler through 0.78.0. There is a divide-by-zero error in the function SplashOutputDev::tilingPatternFill at SplashOutputDev.cc.
- CVE-2019-9959Jul 22, 2019affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftoc
- CVE-2019-10872Apr 5, 2019affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function Splash::blitTransparent at splash/Splash.cc.
- CVE-2019-10871Apr 5, 2019affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
An issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc.
- CVE-2019-9903Mar 21, 2019affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
PDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict marking, leading to stack consumption in the function Dict::find() located at Dict.cc, which can (for example) be triggered by passing a crafted pdf file to the pdfunite binary.
- CVE-2019-9631Mar 8, 2019affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function.
- CVE-2019-9200Feb 26, 2019affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
A heap-based buffer underwrite exists in ImageStream::getLine() located at Stream.cc in Poppler 0.74.0 that can (for example) be triggered by sending a crafted PDF file to the pdfimages binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have
- CVE-2019-7310Feb 3, 2019affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
In Poppler 0.73.0, a heap-based buffer over-read (due to an integer signedness error in the XRef::getEntry function in XRef.cc) allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PDF document, as demons
- CVE-2018-20662Jan 3, 2019affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service (application crash caused by Object.h SIGABRT, because of a wrong return value from PDFDoc::setup) by crafting a PDF file in which an xref data structure is mishandled during extractPDFSub
- CVE-2018-20650Jan 1, 2019affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a check for the dict data type, as demonstrated by use of the FileSpec class (in FileSpec.cc) in pdfdetach.
- CVE-2018-20551Dec 28, 2018affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
A reachable Object::getString assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to construction of invalid rich media annotation assets in the AnnotRichMedia class in Annot.c.
- CVE-2018-20481Dec 26, 2018affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
XRef::getEntry in XRef.cc in Poppler 0.72.0 mishandles unallocated XRef entries, which allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PDF document, when XRefEntry::setFlag in XRef.h is called from Parser::makeStream in Parser.cc.
- CVE-2018-19149Nov 10, 2018affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment.
- CVE-2018-19060Nov 7, 2018affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
An issue was discovered in Poppler 0.71.0. There is a NULL pointer dereference in goo/GooString.h, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating a filename of an embedded file before constructing a save path.
- CVE-2018-19059Nov 7, 2018affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
An issue was discovered in Poppler 0.71.0. There is a out-of-bounds read in EmbFile::save2 in FileSpec.cc, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating embedded files before save attempts.
- CVE-2018-19058Nov 7, 2018affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
An issue was discovered in Poppler 0.71.0. There is a reachable abort in Object.h, will lead to denial of service because EmbFile::save2 in FileSpec.cc lacks a stream check before saving an embedded file.
- CVE-2018-18897Nov 2, 2018affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as demonstrated by pdftocairo.
- CVE-2018-16646Sep 6, 2018affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.
- CVE-2018-13988Jul 25, 2018affected < 0.62.0-4.6.1fixed 0.62.0-4.6.1
Poppler through 0.62 contains an out of bounds read vulnerability due to an incorrect memory access that is not mapped in its memory space, as demonstrated by pdfunite. This can result in memory corruption and denial of service. This may be exploitable when a victim opens a speci
Page 1 of 2