Vulnerabilities > Freedesktop > Poppler > 0.5.90

DATE CVE VULNERABILITY TITLE RISK
2024-06-21 CVE-2024-6239 A flaw was found in the Poppler's Pdfinfo utility.
network
low complexity
freedesktop redhat
7.5
7.5
2023-07-31 CVE-2023-34872 Unspecified vulnerability in Freedesktop Poppler
A vulnerability in Outline.cc for Poppler prior to 23.06.0 allows a remote attacker to cause a Denial of Service (DoS) (crash) via a crafted PDF file in OutlineItem::open.
local
low complexity
freedesktop
5.5
5.5
2022-08-30 CVE-2022-38784 Integer Overflow or Wraparound vulnerability in multiple products
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc).
local
low complexity
freedesktop debian fedoraproject CWE-190
7.8
7.8
2022-08-22 CVE-2022-38171 Integer Overflow or Wraparound vulnerability in multiple products
Xpdf prior to version 4.04 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIG2Stream.cc).
local
low complexity
xpdfreader freedesktop CWE-190
7.8
7.8
2021-08-24 CVE-2021-30860 Integer Overflow or Wraparound vulnerability in multiple products
An integer overflow was addressed with improved input validation.
local
low complexity
apple xpdfreader freedesktop CWE-190
7.8
7.8
2020-12-03 CVE-2020-27778 Access of Uninitialized Pointer vulnerability in multiple products
A flaw was found in Poppler in the way certain PDF files were converted into HTML.
network
low complexity
freedesktop redhat debian CWE-824
7.5
7.5
2020-01-09 CVE-2012-2142 The error function in Error.cc in poppler before 0.21.4 allows remote attackers to execute arbitrary commands via a PDF containing an escape sequence for a terminal emulator.
local
low complexity
freedesktop xpdfreader redhat opensuse
7.8
7.8
2019-11-13 CVE-2010-4654 Injection vulnerability in multiple products
poppler before 0.16.3 has malformed commands that may cause corruption of the internal stack.
local
low complexity
freedesktop debian CWE-74
7.8
7.8
2019-11-13 CVE-2010-4653 Integer Overflow or Wraparound vulnerability in multiple products
An integer overflow condition in poppler before 0.16.3 can occur when parsing CharCodes for fonts.
network
low complexity
freedesktop debian CWE-190
6.5
6.5
2019-09-05 CVE-2018-21009 Integer Overflow or Wraparound vulnerability in Freedesktop Poppler
Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc.
network
low complexity
freedesktop CWE-190
8.8
8.8