Vulnerabilities > Xpdfreader > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-15 | CVE-2024-7868 | Use of Uninitialized Resource vulnerability in Xpdfreader Xpdf In Xpdf 4.05 (and earlier), invalid header info in a DCT (JPEG) stream can lead to an uninitialized variable in the DCT decoder. | 8.2 |
| 2023-02-03 | CVE-2021-36493 | Out-of-bounds Write vulnerability in Xpdfreader Xpdf 4.03 Buffer Overflow vulnerability in pdfimages in xpdf 4.03 allows attackers to crash the application via crafted command. | 7.5 |
| 2022-09-29 | CVE-2022-38222 | Use After Free vulnerability in Xpdfreader Xpdf 4.04 There is a use-after-free issue in JBIG2Stream::close() located in JBIG2Stream.cc in Xpdf 4.04. | 7.8 |
| 2022-09-21 | CVE-2022-38928 | NULL Pointer Dereference vulnerability in Xpdfreader Xpdf 4.04 XPDF 4.04 is vulnerable to Null Pointer Dereference in FoFiType1C.cc:2393. | 7.8 |
| 2022-08-22 | CVE-2022-38171 | Integer Overflow or Wraparound vulnerability in multiple products Xpdf prior to version 4.04 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIG2Stream.cc). | 7.8 |
| 2022-06-28 | CVE-2022-33108 | Out-of-bounds Write vulnerability in Xpdfreader Xpdf 4.04 XPDF v4.04 was discovered to contain a stack overflow vulnerability via the Object::Copy class of object.cc files. | 7.8 |
| 2022-05-09 | CVE-2022-30524 | Out-of-bounds Write vulnerability in Xpdfreader Xpdf 4.0.4 There is an invalid memory access in the TextLine class in TextOutputDev.cc in Xpdf 4.0.4 because the text extractor mishandles characters at large y coordinates. | 7.8 |
| 2021-08-24 | CVE-2021-30860 | Integer Overflow or Wraparound vulnerability in multiple products An integer overflow was addressed with improved input validation. | 7.8 |
| 2020-12-26 | CVE-2020-35376 | Out-of-bounds Write vulnerability in multiple products Xpdf 4.02 allows stack consumption because of an incorrect subroutine reference in a Type 1C font charstring, related to the FoFiType1C::getOp() function. | 7.5 |
| 2020-09-03 | CVE-2020-24999 | Out-of-bounds Write vulnerability in Xpdfreader Xpdf 4.0.2 There is an invalid memory access in the function fprintf located in Error.cc in Xpdf 4.0.2. | 7.8 |