VYPR

libqpdf

by Qpdf Project

CVEs (4)

  • CVE-2017-11627MedJul 25, 2017
    risk 0.36cvss 5.5epss 0.01

    A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the PointerHolder function in PointerHolder.hh, aka an "infinite loop."

  • CVE-2017-11626MedJul 25, 2017
    risk 0.36cvss 5.5epss 0.01

    A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in QPDFTokenizer.cc after four consecutive calls to…

  • CVE-2017-11625MedJul 25, 2017
    risk 0.36cvss 5.5epss 0.01

    A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDF::resolveObjectsInStream function in QPDF.cc, aka an "infinite loop."

  • CVE-2017-11624MedJul 25, 2017
    risk 0.36cvss 5.5epss 0.01

    A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in QPDFTokenizer.cc after two consecutive calls to QPDFObjectHandle::parseInternal,…