29 results (0.014 seconds)

CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0

In Xpdf 4.05 (and earlier), invalid header info in a DCT (JPEG) stream can lead to an uninitialized variable in the DCT decoder. The proof-of-concept PDF file causes a segfault attempting to read from an invalid address. • https://www.xpdfreader.com/security-bug/CVE-2024-7868.html • CWE-908: Use of Uninitialized Resource •

CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0

In Xpdf 4.05 (and earlier), very large coordinates in a page box can cause an integer overflow and divide-by-zero. • https://www.xpdfreader.com/security-bug/CVE-2024-7867.html • CWE-190: Integer Overflow or Wraparound CWE-369: Divide By Zero •

CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0

In Xpdf 4.05 (and earlier), a PDF object loop in a pattern resource leads to infinite recursion and a stack overflow. • https://www.xpdfreader.com/security-bug/object-loops.html • CWE-674: Uncontrolled Recursion •

CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0

Out-of-bounds array write in Xpdf 4.05 and earlier, due to missing object type check in AcroForm field reference. Escritura de matriz fuera de los límites en Xpdf 4.05 y versiones anteriores, debido a que falta la verificación del tipo de objeto en la referencia del campo AcroForm. • https://www.xpdfreader.com/security-bug/CVE-2024-4976.html • CWE-787: Out-of-bounds Write •

CVSS: 2.9EPSS: 0%CPEs: 1EXPL: 0

In Xpdf 4.05 (and earlier), a PDF object loop in the PDF resources leads to infinite recursion and a stack overflow. En Xpdf 4.05 (y versiones anteriores), un bucle de objeto PDF en los recursos PDF provoca una recursividad infinita y un desbordamiento de pila. • https://www.xpdfreader.com/security-bug/object-loops.html • CWE-674: Uncontrolled Recursion •