NotCVE - vendor:"Freedesktop" product:"Poppler" version:"0.54.0"

Page 3 of 23 results (0.005 seconds)

CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0

CVE-2017-9408 – Debian Security Advisory 4079-1

https://notcve.org/view.php?id=CVE-2017-9408

02 Jun 2017 — In Poppler 0.54.0, a memory leak vulnerability was found in the function Object::initArray in Object.cc, which allows attackers to cause a denial of service via a crafted file. En Poppler 0.54.0 se ha encontrado una vulnerabilidad de filtrado de memoria en la función Object::initArray en Object.cc que permite a los atacantes provocar una denegación de servicio (DoS) mediante un archivo manipulado. Aleksandar Nikolic discovered that poppler incorrectly handled JPEG 2000 images. If a user or automated system ... • https://bugs.freedesktop.org/show_bug.cgi?id=100776 • CWE-772: Missing Release of Resource after Effective Lifetime •

CVSS: 5.5EPSS: 0%CPEs: 79EXPL: 0

CVE-2017-7511 – Ubuntu Security Notice USN-3350-1

https://notcve.org/view.php?id=CVE-2017-7511

30 May 2017 — poppler since version 0.17.3 has been vulnerable to NULL pointer dereference in pdfunite triggered by specially crafted documents. poppler desde versión 0.17.3, ha sido vulnerable a una desreferencia del puntero NULL en pdfunite desencadenada por documentos especialmente diseñados. Aleksandar Nikolic discovered that poppler incorrectly handled JPEG 2000 images. If a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial of service or possibly execute arbitrar... • https://cgit.freedesktop.org/poppler/poppler/commit/?id=5c9b08a875b07853be6c44e43ff5f7f059df666a • CWE-476: NULL Pointer Dereference •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

CVE-2017-9083 – Ubuntu Security Notice USN-3350-1

https://notcve.org/view.php?id=CVE-2017-9083

19 May 2017 — poppler 0.54.0, as used in Evince and other products, has a NULL pointer dereference in the JPXStream::readUByte function in JPXStream.cc. For example, the perf_test utility will crash (segmentation fault) when parsing an invalid PDF file. En poppler versión 0.54.0, como es usado en Evince y otros productos, presenta una desreferencia de puntero NULL en la función JPXStream::readUByte en el archivo JPXStream.cc. Por ejemplo, la utilidad perf_test se bloqueará (por fallo de segmentación) al analizar un archi... • https://bugs.freedesktop.org/show_bug.cgi?id=101084 • CWE-476: NULL Pointer Dereference •

1 2 3