Glyphandcog Xpdfreader
53 CVEs affecting Glyphandcog Xpdfreader. Latest disclosed: 2022-11-10. Critical: 0, High: 16.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-24107 | High | 7.8 | 2022-08-30 | Xpdf prior to 4.04 lacked an integer overflow check in JPXStream.cc. |
CVE-2022-24106 | High | 7.8 | 2022-08-30 | In Xpdf prior to 4.04, the DCT (JPEG) decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an un… |
CVE-2019-16115 | High | 7.8 | 2019-09-08 | In Xpdf 4.01.01, a stack-based buffer under-read could be triggered in IdentityFunction::transform in Function.cc, used by GfxAxialShading::getColor. It can, f… |
CVE-2019-14288 | High | 7.8 | 2019-07-27 | An issue was discovered in Xpdf 4.01.01. There is an Integer overflow in the function JBIG2Bitmap::combine at JBIG2Stream.cc for the "one byte per line" case. |
CVE-2019-13289 | High | 7.8 | 2019-07-04 | In Xpdf 4.01.01, there is a use-after-free vulnerability in the function JBIG2Stream::close() located at JBIG2Stream.cc. It can, for example, be triggered by s… |
CVE-2019-13283 | High | 7.8 | 2019-07-04 | In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in strncpy from FoFiType1::parse in fofi/FoFiType1.cc because it does not ensure the source s… |
CVE-2019-13282 | High | 7.8 | 2019-07-04 | In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in SampledFunction::transform in Function.cc when using a large index for samples. It can, fo… |
CVE-2019-13281 | High | 7.8 | 2019-07-04 | In Xpdf 4.01.01, a heap-based buffer overflow could be triggered in DCTStream::decodeImage() in Stream.cc when writing to frameBuf memory. It can, for example… |
CVE-2019-12957 | High | 7.8 | 2019-06-25 | In Xpdf 4.01.01, a buffer over-read could be triggered in FoFiType1C::convertToType1 in fofi/FoFiType1C.cc when the index number is larger than the charset arr… |
CVE-2019-9589 | High | 7.8 | 2019-03-06 | There is a NULL pointer dereference vulnerability in PSOutputDev::setupResources() located in PSOutputDev.cc in Xpdf 4.01. It can be triggered by sending a cra… |
CVE-2019-9588 | High | 7.8 | 2019-03-06 | There is an Invalid memory access in gAtomicIncrement() located at GMutex.h in Xpdf 4.01. It can be triggered by sending a crafted pdf file to (for example) th… |
CVE-2019-9587 | High | 7.8 | 2019-03-06 | There is a stack consumption issue in md5Round1() located in Decrypt.cc in Xpdf 4.01. It can be triggered by sending a crafted pdf file to (for example) the pd… |
CVE-2021-40226 | High | 7.5 | 2022-11-10 | xpdfreader 4.03 is vulnerable to Buffer Overflow. |
CVE-2019-12515 | High | 7.1 | 2019-06-02 | There is an out-of-bounds read vulnerability in the function FlateStream::getChar() located at Stream.cc in Xpdf 4.01.01. It can, for example, be triggered by… |
CVE-2019-12493 | High | 7.1 | 2019-05-31 | A stack-based buffer over-read exists in PostScriptFunction::transform in Function.cc in Xpdf 4.01.01 because GfxSeparationColorSpace and GfxDeviceNColorSpace… |
CVE-2019-12360 | High | 7.1 | 2019-05-27 | A stack-based buffer over-read exists in FoFiTrueType::dumpString in fofi/FoFiTrueType.cc in Xpdf 4.01.01. It can, for example, be triggered by sending crafted… |
CVE-2019-17064 | Medium | 5.5 | 2019-10-01 | Catalog.cc in Xpdf 4.02 has a NULL pointer dereference because Catalog.pageLabels is initialized too late in the Catalog constructor. |
CVE-2019-16088 | Medium | 5.5 | 2019-09-06 | Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc. |
CVE-2019-15860 | Medium | 5.5 | 2019-09-03 | Xpdf 2.00 allows a SIGSEGV in XRef::constructXRef in XRef.cc. NOTE: 2.00 is a version from November 2002. |
CVE-2019-14294 | Medium | 5.5 | 2019-07-27 | An issue was discovered in Xpdf 4.01.01. There is a use-after-free in the function JPXStream::fillReadBuf at JPXStream.cc, due to an out of bounds read. |