Download
| Alert*
|
oval:org.secpod.oval:def:201829
Poppler is a Portable Document Format rendering library, used by applications such as Evince. An uninitialized pointer use flaw was discovered in poppler. An attacker could create a malicious PDF file that, when opened, would cause applications that use poppler to crash or, potentially, execute ar ... oval:org.secpod.oval:def:1503587 Updated poppler packages that fix three security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System base scores, which give detailed severity ratings, are availabl ... oval:org.secpod.oval:def:201938 Poppler is a Portable Document Format rendering library, used by applications such as Evince. An uninitialized pointer use flaw was discovered in poppler. An attacker could create a malicious PDF file that, when opened, would cause applications that use poppler to crash or, potentially, execute ar ... oval:org.secpod.oval:def:500301 Poppler is a Portable Document Format rendering library, used by applications such as Evince. An uninitialized pointer use flaw was discovered in poppler. An attacker could create a malicious PDF file that, when opened, would cause applications that use poppler to crash or, potentially, execute ar ... oval:org.secpod.oval:def:500427 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Two uninitialized pointer use flaws were discovered in poppler. An attacker could create a malicious PDF file that, when opened, would cause applications that use poppler to crash or, potentially, execute ... oval:org.secpod.oval:def:1801597 poppler is installed oval:org.secpod.oval:def:1600951 There is a NULL pointer dereference in the AnnotPath::getCoordsLength function in Annot.h. A crafted input will lead to a remote denial of service attack.The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler allows remote attackers to cause a denial of service via a crafted PDF file, a ... oval:org.secpod.oval:def:106073 Poppler, a PDF rendering library, is a fork of the xpdf PDF viewer developed by Derek Noonburg of Glyph and Cog, LLC. oval:org.secpod.oval:def:106291 Poppler, a PDF rendering library, is a fork of the xpdf PDF viewer developed by Derek Noonburg of Glyph and Cog, LLC. oval:org.secpod.oval:def:1501657 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Security Fix: * A heap-buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash or, potentially, execute arbi ... oval:org.secpod.oval:def:1600478 A heap-buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash or, potentially, execute arbitrary code when opened. oval:org.secpod.oval:def:501900 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Security Fix: * A heap-buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash or, potentially, execute arbi ... oval:org.secpod.oval:def:89045279 This update for poppler fixes the following issues: Security issues fixed: - CVE-2015-8868: Corrupted PDF file can corrupt heap, causing DoS oval:org.secpod.oval:def:89002170 This update for poppler fixes the following issues: - CVE-2017-14977: Fixed a NULL pointer dereference vulnerability in the FoFiTrueType::getCFFBlock function in FoFiTrueType.cc that occurred due to lack of validation of a table pointer, which allows an attacker to launch a denial of service attack. ... oval:org.secpod.oval:def:89002044 This update for poppler fixes the following issues: These security issues were fixed: - CVE-2017-14517: Prevent NULL Pointer dereference in the XRef::parseEntry function via a crafted PDF document . - CVE-2017-9865: Fixed a stack-based buffer overflow vulnerability in GfxState.cc that would have all ... oval:org.secpod.oval:def:110396 Poppler, a PDF rendering library, is a fork of the xpdf PDF viewer developed by Derek Noonburg of Glyph and Cog, LLC. oval:org.secpod.oval:def:89044795 This update for poppler fixes the following issues: Security issues fixed: - CVE-2017-9775: Fix a stack overflow bug in pdftocairo that could have been exploited in a denial of service attack through a specially crafted PDF document. - CVE-2017-9776: Fix an integer overflow bug that could have been ... oval:org.secpod.oval:def:204137 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Security Fix: * A heap-buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash or, potentially, execute arbi ... oval:org.secpod.oval:def:89044959 This update for poppler fixes the following issues: - CVE-2017-9406: Fixed a memory leak that occurred while parsing invalid XRef attributes . - CVE-2017-9083: Fixed a memory leak that occurred when the parser tried to recover from a broken input file oval:org.secpod.oval:def:203144 poppler is installed oval:org.secpod.oval:def:89044981 This update for poppler fixes the following issues: Security issues fixed: - CVE-2017-9775: DoS stack buffer overflow in GfxState.cc in pdftocairo via a crafted PDF document - CVE-2017-9776: DoS integer overflow leading to heap buffer overflow in JBIG2Stream.cc via a crafted PDF document - CVE-201 ... oval:org.secpod.oval:def:204588 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Security Fix: * A stack-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash, or potentially execut ... oval:org.secpod.oval:def:507334 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Security Fix: * poppler: A logic error in the Hints::Hints function can cause denial of service For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other re ... oval:org.secpod.oval:def:67987 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Security Fix: * poppler: divide-by-zero in function SplashOutputDev::tilingPatternFill in SplashOutputDev.cc For more details about the security issue, including the impact, a CVSS score, acknowledgments, ... oval:org.secpod.oval:def:504727 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Security Fix: * poppler: divide-by-zero in function SplashOutputDev::tilingPatternFill in SplashOutputDev.cc For more details about the security issue, including the impact, a CVSS score, acknowledgments, ... oval:org.secpod.oval:def:507373 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Security Fix: * poppler: A logic error in the Hints::Hints function can cause denial of service For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other re ... oval:org.secpod.oval:def:503605 Poppler is a Portable Document Format rendering library, used by applications such as Evince. The evince packages provide a simple multi-page document viewer for Portable Document Format , PostScript , Encapsulated PostScript files, and, with additional back-ends, also the Device Independent File ... oval:org.secpod.oval:def:507703 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Security Fix: * poppler: integer overflow in JBIG2 decoder using malformed files For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related informati ... oval:org.secpod.oval:def:507708 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Security Fix: * poppler: integer overflow in JBIG2 decoder using malformed files For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related informati ... oval:org.secpod.oval:def:204549 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Security Fix: * An integer overflow leading to heap-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to ... oval:org.secpod.oval:def:1506670 [21.01.0-14] - Check for overflow when computing number of symbols - in JBIG2 text region - Resolves: #2126364 oval:org.secpod.oval:def:1506752 [20.11.0-6] - Check for overflow when computing number of symbols - in JBIG2 text region - Resolves: #2126361 oval:org.secpod.oval:def:1506185 [20.11.0-5] - Dont run out of file for Hints - Rebuild for #2096452 - Resolves: #2090969, #2096452 oval:org.secpod.oval:def:116766 poppler is a PDF rendering library. oval:org.secpod.oval:def:116554 poppler is a PDF rendering library. oval:org.secpod.oval:def:116220 poppler is a PDF rendering library. oval:org.secpod.oval:def:116212 poppler is a PDF rendering library. oval:org.secpod.oval:def:116027 poppler is a PDF rendering library. oval:org.secpod.oval:def:116197 poppler is a PDF rendering library. oval:org.secpod.oval:def:89048685 This update for poppler fixes the following issues: * CVE-2022-38784: Fixed integer overflow in the JBIG2 decoder . Bugfixes: * Fixed issue where some PDF generators generate PDF with some wrong numbers in entry table, but the content is still valid . oval:org.secpod.oval:def:89048591 This update for poppler fixes the following issues: * CVE-2022-38784: Fixed integer overflow in the JBIG2 decoder . * CVE-2019-13283: Fixed heap-based buffer over-read that could be triggered by sending a crafted PDF document to the pdftotext tool . oval:org.secpod.oval:def:124272 poppler is a PDF rendering library. oval:org.secpod.oval:def:89048498 This update for poppler fixes the following issues: * CVE-2022-38784: Fixed integer overflow in the JBIG2 decoder . * CVE-2019-13283: Fixed heap-based buffer over-read that could be triggered by sending a crafted PDF document to the pdftotext tool . oval:org.secpod.oval:def:4501425 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Security Fix: * poppler: integer overflow in JBIG2 decoder using malformed files For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related informati ... oval:org.secpod.oval:def:89048677 This update for poppler fixes the following issues: * CVE-2022-38784: Fixed integer overflow in the JBIG2 decoder . oval:org.secpod.oval:def:2500202 Poppler is a Portable Document Format rendering library, used by applications such as Evince. oval:org.secpod.oval:def:205615 The evince packages provide a simple multi-page document viewer for Portable Document Format , PostScript , Encapsulated PostScript files, and, with additional back-ends, also the Device Independent File format files. Poppler is a Portable Document Format rendering library, used by applications s ... oval:org.secpod.oval:def:87160 [21.01.0-13] - Dont run out of file for Hints - Rebuild for #2096451 - Resolves: #2090970, #2096451 oval:org.secpod.oval:def:2500868 Poppler is a Portable Document Format rendering library, used by applications such as Evince. oval:org.secpod.oval:def:5800101 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Security Fix: * poppler: A logic error in the Hints::Hints function can cause denial of service For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other re ... oval:org.secpod.oval:def:89049187 This update for poppler fixes the following issues: * CVE-2022-27337: Fixed a logic error in the Hints::Hints function which can cause denial of service . oval:org.secpod.oval:def:112626 Poppler, a PDF rendering library, is a fork of the xpdf PDF viewer developed by Derek Noonburg of Glyph and Cog, LLC. oval:org.secpod.oval:def:112469 Poppler, a PDF rendering library, is a fork of the xpdf PDF viewer developed by Derek Noonburg of Glyph and Cog, LLC. oval:org.secpod.oval:def:112860 poppler is a PDF rendering library. oval:org.secpod.oval:def:1502002 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:502130 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Security Fix: * A stack-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash, or potentially execut ... oval:org.secpod.oval:def:1600782 Stack-buffer overflow in GfxState.cc:A stack-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash, or potentially execute arbitrary code when opened. Integer overflow in JBIG2Stream.cc:An intege ... oval:org.secpod.oval:def:112438 Poppler, a PDF rendering library, is a fork of the xpdf PDF viewer developed by Derek Noonburg of Glyph and Cog, LLC. oval:org.secpod.oval:def:113557 poppler is a PDF rendering library. oval:org.secpod.oval:def:113399 Poppler, a PDF rendering library, is a fork of the xpdf PDF viewer developed by Derek Noonburg of Glyph and Cog, LLC. oval:org.secpod.oval:def:113672 poppler is a PDF rendering library. oval:org.secpod.oval:def:1700174 There is a NULL pointer dereference in the AnnotPath::getCoordsLength function in Annot.h. A crafted input will lead to a remote denial of service attack. Poppler versions later than 0.41.0 are not affected.The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler allows remote attackers to ... oval:org.secpod.oval:def:113424 poppler is a PDF rendering library. oval:org.secpod.oval:def:114596 poppler is a PDF rendering library. oval:org.secpod.oval:def:114931 poppler is a PDF rendering library. oval:org.secpod.oval:def:113280 poppler is a PDF rendering library. oval:org.secpod.oval:def:113879 poppler is a PDF rendering library. oval:org.secpod.oval:def:1501969 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:502131 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Security Fix: * An integer overflow leading to heap-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to ... oval:org.secpod.oval:def:113862 poppler is a PDF rendering library. oval:org.secpod.oval:def:113621 poppler is a PDF rendering library. oval:org.secpod.oval:def:114588 poppler is a PDF rendering library. oval:org.secpod.oval:def:113401 poppler is a PDF rendering library. oval:org.secpod.oval:def:114867 poppler is a PDF rendering library. oval:org.secpod.oval:def:115905 poppler is a PDF rendering library. oval:org.secpod.oval:def:115794 poppler is a PDF rendering library. oval:org.secpod.oval:def:503299 Poppler is a Portable Document Format rendering library, used by applications such as Evince or Okular. Security Fix: * poppler: heap-based buffer over-read in XRef::getEntry in XRef.cc * poppler: heap-based buffer overflow in function ImageStream::getLine in Stream.cc * poppler: infinite recursi ... oval:org.secpod.oval:def:205317 Poppler is a Portable Document Format rendering library, used by applications such as Evince or Okular. Security Fix: * poppler: heap-based buffer over-read in XRef::getEntry in XRef.cc * poppler: heap-based buffer overflow in function ImageStream::getLine in Stream.cc * poppler: infinite recursi ... oval:org.secpod.oval:def:1504932 evince [3.28.4-11] - Add remaining translations of string "Reset form" - Resolves: #1896006 [3.28.4-10] - Add available translations of string "Reset form" - Resolves: #1896006 [3.28.4-9] - Ship evince-devel - Resolves: #1919423 [3.28.4-8] - Handle ResetForm action - Resolves: #1889793 poppler [20.1 ... oval:org.secpod.oval:def:89049132 This update for poppler fixes the following issues: * CVE-2022-27337: Fixed a logic error in the Hints::Hints function which can cause denial of service . * CVE-2018-21009: Fixed integer overflow in Parser:makeStream in Parser.cc . * CVE-2019-12293: Fixed heap-based buffer over-read in JPXStream:ini ... oval:org.secpod.oval:def:4501262 Poppler is a Portable Document Format rendering library, used by applications such as Evince. The evince packages provide a simple multi-page document viewer for Portable Document Format , PostScript , Encapsulated PostScript files, and, with additional back-ends, also the Device Independent File ... oval:org.secpod.oval:def:73621 Poppler is a Portable Document Format rendering library, used by applications such as Evince. The evince packages provide a simple multi-page document viewer for Portable Document Format , PostScript , Encapsulated PostScript files, and, with additional back-ends, also the Device Independent File ... oval:org.secpod.oval:def:205512 Poppler is a Portable Document Format rendering library, used by applications such as Evince. The evince packages provide a simple multi-page document viewer for Portable Document Format , PostScript , Encapsulated PostScript files, and, with additional back-ends, also the Device Independent File ... oval:org.secpod.oval:def:2500308 Poppler is a Portable Document Format rendering library, used by applications such as Evince. oval:org.secpod.oval:def:202039 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Multiple integer overflow flaws were found in poppler. An attacker could create a malicious PDF file that would cause applications that use poppler to crash or, potentially, execute arbitrary code when op ... oval:org.secpod.oval:def:500569 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Multiple integer overflow flaws were found in poppler. An attacker could create a malicious PDF file that would cause applications that use poppler to crash or, potentially, execute arbitrary code when op ... oval:org.secpod.oval:def:202138 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Multiple integer overflow flaws were found in poppler. An attacker could create a malicious PDF file that would cause applications that use poppler to crash or, potentially, execute arbitrary code when op ... oval:org.secpod.oval:def:500577 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Multiple integer overflow flaws were found in poppler. An attacker could create a malicious PDF file that would cause applications that use poppler to crash or, potentially, execute arbitrary code when op ... oval:org.secpod.oval:def:202082 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Multiple integer overflow flaws were found in poppler. An attacker could create a malicious PDF file that would cause applications that use poppler to crash or, potentially, execute arbitrary code when op ... oval:org.secpod.oval:def:202175 Poppler is a Portable Document Format rendering library, used by applications such as Evince. Multiple integer overflow flaws were found in poppler. An attacker could create a malicious PDF file that would cause applications that use poppler to crash or, potentially, execute arbitrary code when op ... oval:org.secpod.oval:def:89049260 This update for poppler fixes the following issues: * CVE-2019-16115: Fixed an uninitialized memory error in GfxUnivariateShading::setupCache oval:org.secpod.oval:def:89049307 This update for poppler fixes the following issues: * CVE-2019-16115: Fixed an uninitialized memory error in GfxUnivariateShading::setupCache oval:org.secpod.oval:def:1701815 An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause a denial of service via crafted .pdf file to FoFiType1C::cvtGlyph function. An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause a denial of service via craf ... oval:org.secpod.oval:def:89050092 This update for poppler fixes the following issues: * CVE-2020-23804: Fixed uncontrolled recursion in pdfinfo and pdftops . * CVE-2020-36024: Fixed NULL Pointer Deference in `FoFiType1C:convertToType1` . * CVE-2022-37050: Fixed denial-of-service via savePageAs in PDFDoc.c . * CVE-2022-37051: Fixed a ... oval:org.secpod.oval:def:89049811 This update for poppler fixes the following issues: * CVE-2022-37050: Fixed denial-of-service via savePageAs in PDFDoc.c . * CVE-2022-37051: Fixed abort in main in pdfunite.cc . * CVE-2022-38349: Fixed reachable assertion in Object.h that will lead to denial of service . oval:org.secpod.oval:def:3301628 Security update for poppler oval:org.secpod.oval:def:89049955 This update for poppler fixes the following issues: * CVE-2020-23804: Fixed uncontrolled recursion in pdfinfo and pdftops . * CVE-2020-36024: Fixed NULL Pointer Deference in `FoFiType1C:convertToType1` . * CVE-2022-37050: Fixed denial-of-service via savePageAs in PDFDoc.c . * CVE-2022-37051: Fixed a ... oval:org.secpod.oval:def:89050213 This update for poppler fixes the following issues: * CVE-2020-23804: Fixed uncontrolled recursion in pdfinfo and pdftops . * CVE-2020-36024: Fixed NULL Pointer Deference in `FoFiType1C:convertToType1` . * CVE-2022-37050: Fixed denial-of-service via savePageAs in PDFDoc.c . * CVE-2022-37051: Fixed a ... oval:org.secpod.oval:def:1701579 Buffer Overflow vulnerability in HtmlOutputDev::page in poppler 0.75.0 allows attackers to cause a denial of service. In Poppler 22.07.0, PDFDoc::savePageAs in PDFDoc.c callows attackers to cause a denial-of-service by crafting a PDF file in which the xref data structure is mishandled in getCatalog ... oval:org.secpod.oval:def:3301851 Security update for poppler oval:org.secpod.oval:def:1701825 Uncontrolled Recursion in pdfinfo, and pdftops in poppler 0.89.0 allows remote attackers to cause a denial of service via crafted input oval:org.secpod.oval:def:89051056 This update for poppler fixes the following issues: * CVE-2019-9545: Fixed a potential crash due to uncontrolled recursion in the JBIG parser . * CVE-2019-9631: Fixed an out of bounds read when converting a PDF to an image . * CVE-2022-37052: Fixed a reachable assertion when extracting pages of a PD ... oval:org.secpod.oval:def:3301916 Security update for poppler oval:org.secpod.oval:def:19500337 Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder . Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf oval:org.secpod.oval:def:19500382 An issue was discovered in Poppler 22.08.0. There is a reachable assertion in Object.h, will lead to denial of service because PDFDoc::replacePageDict in PDFDoc.cc lacks a stream check before saving an embedded file oval:org.secpod.oval:def:89051059 This update for poppler fixes the following issues: * CVE-2022-37052: Fixed a crash that could be triggered when opening a crafted file . * CVE-2023-34872: Fixed a remote denial-of-service in Outline.cc . oval:org.secpod.oval:def:3302041 Security update for poppler oval:org.secpod.oval:def:19500433 A vulnerability in Outline.cc for Poppler prior to 23.06.0 allows a remote attacker to cause a Denial of Service via a crafted PDF file in OutlineItem::open oval:org.secpod.oval:def:89051049 This update for poppler fixes the following issues: * CVE-2023-34872: Fixed a remote denial-of-service in Outline.cc oval:org.secpod.oval:def:126810 poppler is a PDF rendering library. oval:org.secpod.oval:def:89048880 This update for cups-filters, poppler, texlive fixes the following issues: cups-filters: * CVE-2023-24805: Fixed a remote code execution in the beh backend . texlive: * CVE-2023-32700: Fixed arbitrary code execution in LuaTeX . poppler: * Added missing header file goo/GooCheckedOps.h. Without it, ot ... oval:org.secpod.oval:def:89051166 This update for poppler fixes the following issues: * CVE-2019-9545: Fixed an uncontrolled recursion issue that could cause a crash . * CVE-2022-37052: Fixed a crash that could be triggered when opening a crafted file . * CVE-2020-36023: Fixed a stack bugger overflow in FoFiType1C:cvtGlyph . oval:org.secpod.oval:def:89051288 This update for poppler fixes the following issues: * CVE-2018-20662: PDFDoc setup in PDFDoc.cc allows attackers to cause DOS because of a wrong return value from PDFDoc:setup . oval:org.secpod.oval:def:3302106 Security update for poppler |
