CVE search results

41 – 50 of 52 results

Detailed view

Sort by:

CVE-2005-3627

Unknown priority

Fixed

Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via a DCTDecode stream with (1) a large...

6 affected packages

cupsys, gpdf, kdegraphics, koffice, poppler, tetex-bin

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cupsys	—	—	—	—	—
gpdf	—	—	—	—	—
kdegraphics	—	—	—	—	—
koffice	—	—	—	—	—
poppler	—	—	—	—	—
tetex-bin	—	—	—	—	—

CVE-2005-3626

Unknown priority

Fixed

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference.

3 affected packages

gpdf, kdegraphics, koffice

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
gpdf	—	—	—	—	—
kdegraphics	—	—	—	—	—
koffice	—	—	—	—	—

CVE-2005-3625

Unknown priority

Fixed

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1)...

6 affected packages

cupsys, gpdf, kdegraphics, koffice, poppler, tetex-bin

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cupsys	—	—	—	—	—
gpdf	—	—	—	—	—
kdegraphics	—	—	—	—	—
koffice	—	—	—	—	—
poppler	—	—	—	—	—
tetex-bin	—	—	—	—	—

CVE-2005-3624

Unknown priority

Fixed

The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode...

6 affected packages

cupsys, gpdf, kdegraphics, koffice, poppler, tetex-bin

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cupsys	—	—	—	—	—
gpdf	—	—	—	—	—
kdegraphics	—	—	—	—	—
koffice	—	—	—	—	—
poppler	—	—	—	—	—
tetex-bin	—	—	—	—	—

CVE-2005-3192

Unknown priority

Fixed

Heap-based buffer overflow in the StreamPredictor function in Xpdf 3.01, as used in products such as (1) Poppler, (2) teTeX, (3) KDE kpdf, and (4) pdftohtml, (5) KOffice KWord, (6) CUPS, and (7) libextractor allows...

6 affected packages

cupsys, gpdf, kdegraphics, koffice, poppler, tetex-bin

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cupsys	—	—	—	—	—
gpdf	—	—	—	—	—
kdegraphics	—	—	—	—	—
koffice	—	—	—	—	—
poppler	—	—	—	—	—
tetex-bin	—	—	—	—	—

CVE-2005-3191

Unknown priority

Fixed

Multiple heap-based buffer overflows in the (1) DCTStream::readProgressiveSOF and (2) DCTStream::readBaselineSOF functions in the DCT stream parsing code (Stream.cc) in xpdf 3.01 and earlier, as used in products such as (a)...

9 affected packages

cupsys, gpdf, kdegraphics, koffice, libextractor...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cupsys	—	—	—	—	—
gpdf	—	—	—	—	—
kdegraphics	—	—	—	—	—
koffice	—	—	—	—	—
libextractor	—	—	—	—	—
pdftohtml	—	—	—	—	—
poppler	—	—	—	—	—
tetex-bin	—	—	—	—	—
xpdf	—	—	—	—	—

CVE-2005-3193

Unknown priority

Fixed

Heap-based buffer overflow in the JPXStream::readCodestream function in the JPX stream parsing code (JPXStream.c) for xpdf 3.01 and earlier, as used in products such as (1) Poppler, (2) teTeX, (3) KDE kpdf, (4) CUPS, and...

7 affected packages

cupsys, kdegraphics, koffice, pdftohtml, poppler...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cupsys	—	—	—	—	—
kdegraphics	—	—	—	—	—
koffice	—	—	—	—	—
pdftohtml	—	—	—	—	—
poppler	—	—	—	—	—
tetex-bin	—	—	—	—	—
xpdf	—	—	—	—	—

CVE-2005-2097

Low priority

Some fixes available 22 of 23

xpdf and kpdf do not properly validate the "loca" table in PDF files, which allows local users to cause a denial of service (disk consumption and hang) via a PDF file with a "broken" loca table, which causes a large temporary file...

6 affected packages

cups, cupsys, gpdf, kdegraphics, poppler, xpdf

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cups	—	—	—	—	—
cupsys	—	—	—	—	—
gpdf	—	—	—	—	—
kdegraphics	—	—	—	—	—
poppler	—	—	—	—	—
xpdf	—	—	—	—	—

CVE-2005-0064

Unknown priority

Fixed

Buffer overflow in the Decrypt::makeFileKey2 function in Decrypt.cc for xpdf 3.00 and earlier allows remote attackers to execute arbitrary code via a PDF file with a large /Encrypt /Length keyLength value.

8 affected packages

cupsys, gpdf, kdegraphics, koffice, libextractor...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cupsys	—	—	—	—	—
gpdf	—	—	—	—	—
kdegraphics	—	—	—	—	—
koffice	—	—	—	—	—
libextractor	—	—	—	—	—
pdftohtml	—	—	—	—	—
tetex-bin	—	—	—	—	—
xpdf	—	—	—	—	—

CVE-2004-0889

Unknown priority

Fixed

Multiple integer overflows in xpdf 3.0, and other packages that use xpdf code such as CUPS, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than...

3 affected packages

kdegraphics, koffice, xpdf

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
kdegraphics	—	—	—	—	—
koffice	—	—	—	—	—
xpdf	—	—	—	—	—

Export to JSON

Results by page:

Search CVE reports