Vulnerabilities > Freedesktop
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-22 | CVE-2020-23804 | Uncontrolled Recursion vulnerability in Freedesktop Poppler 0.89.0 Uncontrolled Recursion in pdfinfo, and pdftops in poppler 0.89.0 allows remote attackers to cause a denial of service via crafted input. | 7.5 |
| 2023-08-22 | CVE-2022-37050 | Unspecified vulnerability in Freedesktop Poppler 22.07.0 In Poppler 22.07.0, PDFDoc::savePageAs in PDFDoc.c callows attackers to cause a denial-of-service (application crashes with SIGABRT) by crafting a PDF file in which the xref data structure is mishandled in getCatalog processing. | 6.5 |
| 2023-08-22 | CVE-2022-37051 | Reachable Assertion vulnerability in Freedesktop Poppler 22.07.0 An issue was discovered in Poppler 22.07.0. | 6.5 |
| 2023-08-22 | CVE-2022-37052 | Reachable Assertion vulnerability in Freedesktop Poppler 22.07.0 A reachable Object::getString assertion in Poppler 22.07.0 allows attackers to cause a denial of service due to a failure in markObject. | 6.5 |
| 2023-08-22 | CVE-2022-38349 | Reachable Assertion vulnerability in Freedesktop Poppler 22.08.0 An issue was discovered in Poppler 22.08.0. | 6.5 |
| 2023-08-22 | CVE-2020-18839 | Out-of-bounds Write vulnerability in Freedesktop Poppler 0.75.0 Buffer Overflow vulnerability in HtmlOutputDev::page in poppler 0.75.0 allows attackers to cause a denial of service. | 6.5 |
| 2023-08-11 | CVE-2020-36023 | Infinite Loop vulnerability in Freedesktop Poppler 20.12.1 An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause a denial of service (DoS) via crafted .pdf file to FoFiType1C::cvtGlyph function. | 6.5 |
| 2023-08-11 | CVE-2020-36024 | NULL Pointer Dereference vulnerability in Freedesktop Poppler 20.12.1 An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause a denial of service (DoS) via crafted .pdf file to FoFiType1C::convertToType1 function. | 5.5 |
| 2023-07-31 | CVE-2023-34872 | Unspecified vulnerability in Freedesktop Poppler A vulnerability in Outline.cc for Poppler prior to 23.06.0 allows a remote attacker to cause a Denial of Service (DoS) (crash) via a crafted PDF file in OutlineItem::open. | 5.5 |
| 2022-11-19 | CVE-2022-4055 | Improper Neutralization of Expression/Command Delimiters vulnerability in Freedesktop Xdg-Utils When xdg-mail is configured to use thunderbird for mailto URLs, improper parsing of the URL can lead to additional headers being passed to thunderbird that should not be included per RFC 2368. | 7.4 |