Vulnerabilities > Freedesktop > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-01-26 | CVE-2013-7296 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Freedesktop Poppler The JBIG2Stream::readSegments method in JBIG2Stream.cc in Poppler before 0.24.5 does not use the correct specifier within a format string, which allows context-dependent attackers to cause a denial of service (segmentation fault and application crash) via a crafted PDF file. | 5.0 |
| 2013-11-23 | CVE-2013-4474 | Improper Input Validation vulnerability in multiple products Format string vulnerability in the extractPages function in utils/pdfseparate.cc in poppler before 0.24.3 allows remote attackers to cause a denial of service (crash) via format string specifiers in a destination filename. | 5.0 |
| 2013-04-09 | CVE-2013-1790 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Freedesktop Poppler poppler/Stream.cc in poppler before 0.22.1 allows context-dependent attackers to have an unspecified impact via vectors that trigger a read of uninitialized memory by the CCITTFaxStream::lookChar function. | 6.8 |
| 2013-04-09 | CVE-2013-1789 | Denial of Service vulnerability in Poppler splash/Splash.cc in poppler before 0.22.1 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to the (1) Splash::arbitraryTransformMask, (2) Splash::blitMask, and (3) Splash::scaleMaskYuXu functions. network freedesktop | 4.3 |
| 2013-04-09 | CVE-2013-1788 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Freedesktop Poppler poppler before 0.22.1 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors that trigger an "invalid memory access" in (1) splash/Splash.cc, (2) poppler/Function.cc, and (3) poppler/Stream.cc. | 6.8 |
| 2011-12-10 | CVE-2011-4349 | SQL Injection vulnerability in Freedesktop Colord Multiple SQL injection vulnerabilities in (1) cd-mapping-db.c and (2) cd-device-db.c in colord before 0.1.15 allow local users to execute arbitrary SQL commands via vectors related to color devices and (a) device id, (b) property, or (c) profile id. | 4.6 |
| 2011-02-19 | CVE-2011-1000 | Improper Input Validation vulnerability in Freedesktop Telepathy Gabble jingle-factory.c in Telepathy Gabble 0.11 before 0.11.7, 0.10 before 0.10.5, and 0.8 before 0.8.15 allows remote attackers to sniff audio and video calls via a crafted google:jingleinfo stanza that specifies an alternate server for streamed media. | 6.4 |
| 2009-01-07 | CVE-2009-0068 | Code Injection vulnerability in Freedesktop Xdg-Utils 1.0 Interaction error in xdg-open allows remote attackers to execute arbitrary code by sending a file with a dangerous MIME type but using a safe type that Firefox sends to xdg-open, which causes xdg-open to process the dangerous file type through automatic type detection, as demonstrated by overwriting the .desktop file. | 6.8 |
| 2008-12-10 | CVE-2008-4311 | Configuration vulnerability in Freedesktop Dbus The default configuration of system.conf in D-Bus (aka DBus) before 1.2.6 omits the send_type attribute in certain rules, which allows local users to bypass intended access restrictions by (1) sending messages, related to send_requested_reply; and possibly (2) receiving messages, related to receive_requested_reply. | 4.6 |
| 2008-11-06 | CVE-2008-4984 | Link Following vulnerability in Freedesktop Scratchbox2 1.99.0.24 scratchbox2 1.99.0.24 allows local users to overwrite arbitrary files via a symlink attack on (a) /tmp/dpkg.#####.tmp, (b) /tmp/missing_deps.#####, and (c) /tmp/sb2-pkg-chk.$tstamp.##### temporary files, related to the (1) dpkg-checkbuilddeps and (2) sb2-check-pkg-mappings scripts. | 6.9 |