Vulnerabilities > Freedesktop > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-25 | CVE-2020-35702 | Out-of-bounds Write vulnerability in Freedesktop Poppler 20.12.1 DCTStream::getChars in DCTStream.cc in Poppler 20.12.1 has a heap-based buffer overflow via a crafted PDF document. | 7.8 |
| 2020-12-03 | CVE-2020-27778 | Access of Uninitialized Pointer vulnerability in multiple products A flaw was found in Poppler in the way certain PDF files were converted into HTML. | 7.5 |
| 2020-01-09 | CVE-2012-2142 | The error function in Error.cc in poppler before 0.21.4 allows remote attackers to execute arbitrary commands via a PDF containing an escape sequence for a terminal emulator. | 7.8 |
| 2019-11-13 | CVE-2010-4654 | Injection vulnerability in multiple products poppler before 0.16.3 has malformed commands that may cause corruption of the internal stack. | 7.8 |
| 2019-09-05 | CVE-2018-21009 | Integer Overflow or Wraparound vulnerability in Freedesktop Poppler Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc. | 8.8 |
| 2019-08-01 | CVE-2019-14494 | Divide By Zero vulnerability in multiple products An issue was discovered in Poppler through 0.78.0. | 7.5 |
| 2019-06-11 | CVE-2019-12749 | Link Following vulnerability in multiple products dbus before 1.10.28, 1.12.x before 1.12.16, and 1.13.x before 1.13.12, as used in DBusServer in Canonical Upstart in Ubuntu 14.04 (and in some, less common, uses of dbus-daemon), allows cookie spoofing because of symlink mishandling in the reference implementation of DBUS_COOKIE_SHA1 in the libdbus library. | 7.1 |
| 2019-05-23 | CVE-2019-12293 | Out-of-bounds Read vulnerability in Freedesktop Poppler In Poppler through 0.76.1, there is a heap-based buffer over-read in JPXStream::init in JPEG2000Stream.cc via data with inconsistent heights or widths. | 8.8 |
| 2019-04-05 | CVE-2019-10872 | Out-of-bounds Read vulnerability in Freedesktop Poppler 0.74.0 An issue was discovered in Poppler 0.74.0. | 8.8 |
| 2019-03-01 | CVE-2019-9545 | Uncontrolled Recursion vulnerability in Freedesktop Poppler 0.74.0 An issue was discovered in Poppler 0.74.0. | 8.8 |