CVSS: 8.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-7868 – Uninitialized variable in Xpdf 4.05 due to invalid JPEG header
https://notcve.org/view.php?id=CVE-2024-7868
15 Aug 2024 — In Xpdf 4.05 (and earlier), invalid header info in a DCT (JPEG) stream can lead to an uninitialized variable in the DCT decoder. The proof-of-concept PDF file causes a segfault attempting to read from an invalid address. • https://www.xpdfreader.com/security-bug/CVE-2024-7868.html • CWE-908: Use of Uninitialized Resource •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-7867 – Integer overflow and divide-by-zero in Xpdf 4.05 due to bogus page box coordinates
https://notcve.org/view.php?id=CVE-2024-7867
15 Aug 2024 — In Xpdf 4.05 (and earlier), very large coordinates in a page box can cause an integer overflow and divide-by-zero. • https://www.xpdfreader.com/security-bug/CVE-2024-7867.html • CWE-190: Integer Overflow or Wraparound CWE-369: Divide By Zero •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-7866 – Stack overflow in Xpdf 4.05 due to object loop in PDF pattern
https://notcve.org/view.php?id=CVE-2024-7866
15 Aug 2024 — In Xpdf 4.05 (and earlier), a PDF object loop in a pattern resource leads to infinite recursion and a stack overflow. • https://www.xpdfreader.com/security-bug/object-loops.html • CWE-674: Uncontrolled Recursion •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-4976 – Out-of-bounds array write in Xpdf 4.05 due to missing object type check
https://notcve.org/view.php?id=CVE-2024-4976
15 May 2024 — Out-of-bounds array write in Xpdf 4.05 and earlier, due to missing object type check in AcroForm field reference. Escritura de matriz fuera de los límites en Xpdf 4.05 y versiones anteriores, debido a que falta la verificación del tipo de objeto en la referencia del campo AcroForm. • https://www.xpdfreader.com/security-bug/CVE-2024-4976.html • CWE-787: Out-of-bounds Write •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-4568 – Stack overflow in Xpdf 4.05 due to object loop in PDF resources
https://notcve.org/view.php?id=CVE-2024-4568
06 May 2024 — In Xpdf 4.05 (and earlier), a PDF object loop in the PDF resources leads to infinite recursion and a stack overflow. En Xpdf 4.05 (y versiones anteriores), un bucle de objeto PDF en los recursos PDF provoca una recursividad infinita y un desbordamiento de pila. • https://www.xpdfreader.com/security-bug/object-loops.html • CWE-674: Uncontrolled Recursion •
CVSS: 2.9EPSS: 0%CPEs: 1EXPL: 0CVE-2024-4141 – Out-of-bounds array write in Xpdf 4.05 due to incorrect bounds check
https://notcve.org/view.php?id=CVE-2024-4141
24 Apr 2024 — Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by an invalid character code in a Type 1 font. The root problem was a bounds check that was being optimized away by modern compilers. Escritura de matriz fuera de los límites en Xpdf 4.05 y versiones anteriores, provocada por un código de carácter no válido en una fuente Tipo 1. La raíz del problema era una verificación de los límites que los compiladores modernos estaban optimizando. • https://www.xpdfreader.com/security-bug/CVE-2024-4141.html • CWE-787: Out-of-bounds Write •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-3900 – Out-of-bounds stack array write in Xpdf 4.05 due to missing zero check
https://notcve.org/view.php?id=CVE-2024-3900
17 Apr 2024 — Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by long Unicode sequence in ActualText. Escritura de matriz fuera de los límites en Xpdf 4.05 y versiones anteriores, provocada por una secuencia Unicode larga en ActualText. • https://www.xpdfreader.com/security-bug/CVE-2024-3900.html • CWE-787: Out-of-bounds Write •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-3248 – Stack overflow in Xpdf 4.05 due to object loop in attachments
https://notcve.org/view.php?id=CVE-2024-3248
02 Apr 2024 — In Xpdf 4.05 (and earlier), a PDF object loop in the attachments leads to infinite recursion and a stack overflow. En Xpdf 4.05 (y versiones anteriores), un bucle de objeto PDF en los archivos adjuntos provoca una recursividad infinita y un desbordamiento de la pila. • https://forum.xpdfreader.com/viewtopic.php?t=43657 • CWE-674: Uncontrolled Recursion •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-3247 – Stack overflow in Xpdf 4.05 due to object loop in PDF object stream
https://notcve.org/view.php?id=CVE-2024-3247
02 Apr 2024 — In Xpdf 4.05 (and earlier), a PDF object loop in an object stream leads to infinite recursion and a stack overflow. En Xpdf 4.05 (y versiones anteriores), un bucle de un objeto PDF en una secuencia de objetos genera una recursividad infinita y un desbordamiento de la pila. • https://forum.xpdfreader.com/viewtopic.php?t=43597 • CWE-674: Uncontrolled Recursion •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-2971 – Out-of-bounds array access due to negative object numbers in indirect references in Xpdf 4.05
https://notcve.org/view.php?id=CVE-2024-2971
26 Mar 2024 — Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by negative object number in indirect reference in the input PDF file. Escritura de matriz fuera de los límites en Xpdf 4.05 y versiones anteriores, provocada por un número de objeto negativo en una referencia indirecta en el archivo PDF de entrada. • https://www.xpdfreader.com/security-bug/CVE-2024-2971.html • CWE-787: Out-of-bounds Write •