Search CVE reports

Toggle filters

151 – 160 of 187 results

CVE-2010-3704

Medium priority

Some fixes available 9 of 76

The FoFiType1::parse function in fofi/FoFiType1.cc in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, kdegraphics, and possibly other products allows context-dependent attackers to...

11 affected packages

ipe, poppler, texlive-bin, xpdf, koffice...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ipe Needs evaluation Needs evaluation Needs evaluation Needs evaluation
poppler Not affected Not affected Not affected Not affected
texlive-bin Not affected Not affected Not affected Not affected
xpdf Not affected Not affected Not in release Not affected
koffice Not in release Not in release Not in release Not in release
tetex-bin Not in release Not in release Not in release Not in release
kdegraphics Not in release Not in release Not in release Not in release
gpdf Not in release Not in release Not in release Not in release
pdftohtml Not in release Not in release Not in release Not in release
libextractor Not affected Not affected Not affected Not affected
pdfkit.framework Not in release Not in release Not in release Not in release
Show all 11 packages Show less packages

CVE-2010-3703

Medium priority

Some fixes available 4 of 73

The PostScriptFunction::PostScriptFunction function in poppler/Function.cc in the PDF parser in poppler 0.8.7 and possibly other versions up to 0.15.1, and possibly other products, allows context-dependent attackers to cause a...

11 affected packages

ipe, poppler, texlive-bin, xpdf, koffice...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ipe Needs evaluation Needs evaluation Needs evaluation Needs evaluation
poppler Not affected Not affected Not affected Not affected
texlive-bin Not affected Not affected Not affected Not affected
xpdf Not affected Not affected Not in release Not affected
koffice Not in release Not in release Not in release Not in release
tetex-bin Not in release Not in release Not in release Not in release
kdegraphics Not in release Not in release Not in release Not in release
gpdf Not in release Not in release Not in release Not in release
pdftohtml Not in release Not in release Not in release Not in release
libextractor Not affected Not affected Not affected Not affected
pdfkit.framework Not in release Not in release Not in release Not in release
Show all 11 packages Show less packages

CVE-2010-3702

Medium priority

Some fixes available 9 of 76

The Gfx::getPos function in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, CUPS, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of...

11 affected packages

ipe, poppler, texlive-bin, xpdf, koffice...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ipe Needs evaluation Needs evaluation Needs evaluation Needs evaluation
poppler Not affected Not affected Not affected Not affected
texlive-bin Not affected Not affected Not affected Not affected
xpdf Not affected Not affected Not in release Not affected
koffice Not in release Not in release Not in release Not in release
tetex-bin Not in release Not in release Not in release Not in release
kdegraphics Not in release Not in release Not in release Not in release
gpdf Not in release Not in release Not in release Not in release
pdftohtml Not in release Not in release Not in release Not in release
libextractor Not affected Not affected Not affected Not affected
pdfkit.framework Not in release Not in release Not in release Not in release
Show all 11 packages Show less packages

CVE-2010-1440

Medium priority

Some fixes available 4 of 5

Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a special command in...

1 affected package

texlive-bin

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
texlive-bin
Show less packages

CVE-2010-0827

Medium priority

Some fixes available 4 of 5

Integer overflow in dvips in TeX Live 2009 and earlier, and teTeX, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted virtual font (VF) file associated with a DVI file.

1 affected package

texlive-bin

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
texlive-bin
Show less packages

CVE-2010-0739

Medium priority

Some fixes available 4 of 5

Integer overflow in the predospecial function in dospecial.c in dvips in (1) TeX Live and (2) teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer...

1 affected package

texlive-bin

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
texlive-bin
Show less packages

CVE-2009-3720

Low priority

Some fixes available 81 of 535

The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML...

41 affected packages

coin3, libxmltok, audacity, matanza, ayttm...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
coin3 Vulnerable Vulnerable Vulnerable Vulnerable
libxmltok Not affected Not affected Not affected Not affected
audacity Not affected Not affected Not affected Not affected
matanza Ignored Ignored Ignored Ignored
ayttm Not in release Not in release Not in release Not in release
cableswig Not in release Not in release Not in release Not in release
cadaver Vulnerable Vulnerable Vulnerable Vulnerable
cmake Not affected Not affected Not affected Not affected
ghostscript Not affected Not affected Not affected Not affected
insighttoolkit Not in release Not in release Not in release Not in release
simgear Not affected Not affected Not affected Not affected
sitecopy Not in release Not affected Not affected Not affected
smart Not in release Not in release Not in release Not affected
swish-e Needs evaluation Needs evaluation Needs evaluation Needs evaluation
tdom Not affected Not affected Not affected Not affected
texlive-bin Not affected Not affected Not affected Not affected
tla Not affected Not affected Not affected Not affected
wbxml2 Not affected Not affected Not affected Not affected
wxwidgets2.8 Not in release Not in release Not in release Not in release
xotcl Not affected Not affected Not affected Not affected
expat Fixed Fixed Fixed Fixed
apache2 Not affected Not affected Not affected Not affected
apr-util Not affected Not affected Not affected Not affected
python2.6 Not in release Not in release Not in release Not in release
python2.5 Not in release Not in release Not in release Not in release
celementtree Not in release Not in release Not in release Not in release
python2.4 Not in release Not in release Not in release Not in release
python-xml Not in release Not in release Not in release Not in release
xmlrpc-c Fixed Fixed Fixed Fixed
wxwidgets2.6 Not in release Not in release Not in release Not in release
vnc4 Not in release Not in release Not in release Not affected
w3c-libwww Not in release Not in release Not in release Not in release
poco Not affected Not affected Not affected Not affected
xulrunner Not in release Not in release Not in release Not in release
libparagui1.1 Not in release Not in release Not in release Not in release
kompozer Not in release Not in release Not in release Not in release
wxwindows2.4 Not in release Not in release Not in release Not in release
gdcm Not affected Not affected Not affected Not affected
grmonitor Not in release Not in release Not in release Not in release
vtk Not in release Not in release Not in release Not in release
paraview Not affected Not affected Not affected Not affected
Show all 41 packages Show less packages

CVE-2009-3609

Medium priority

Some fixes available 39 of 108

Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service...

11 affected packages

ipe, texlive-bin, xpdf, koffice, poppler...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ipe Needs evaluation Needs evaluation Needs evaluation Needs evaluation
texlive-bin Not affected Not affected Not affected Not affected
xpdf Not affected Not affected Not in release Not affected
koffice Not in release Not in release Not in release Not in release
poppler Fixed Fixed Fixed Fixed
tetex-bin Not in release Not in release Not in release Not in release
kdegraphics Not in release Not in release Not in release Not in release
gpdf Not in release Not in release Not in release Not in release
pdftohtml Not in release Not in release Not in release Not in release
libextractor Not affected Not affected Not affected Not affected
pdfkit.framework Not in release Not in release Not in release Not in release
Show all 11 packages Show less packages

CVE-2009-3608

Medium priority

Some fixes available 39 of 108

Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote attackers to execute...

11 affected packages

ipe, texlive-bin, xpdf, koffice, poppler...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ipe Needs evaluation Needs evaluation Needs evaluation Needs evaluation
texlive-bin Not affected Not affected Not affected Not affected
xpdf Not affected Not affected Not in release Not affected
koffice Not in release Not in release Not in release Not in release
poppler Fixed Fixed Fixed Fixed
tetex-bin Not in release Not in release Not in release Not in release
kdegraphics Not in release Not in release Not in release Not in release
gpdf Not in release Not in release Not in release Not in release
pdftohtml Not in release Not in release Not in release Not in release
libextractor Not affected Not affected Not affected Not affected
pdfkit.framework Not in release Not in release Not in release Not in release
Show all 11 packages Show less packages

CVE-2009-3606

Medium priority

Some fixes available 7 of 76

Integer overflow in the PSOutputDev::doImageL1Sep function in Xpdf before 3.02pl4, and Poppler 0.x, as used in kdegraphics KPDF, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a...

11 affected packages

ipe, poppler, texlive-bin, xpdf, koffice...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ipe Needs evaluation Needs evaluation Needs evaluation Needs evaluation
poppler Not affected Not affected Not affected Not affected
texlive-bin Not affected Not affected Not affected Not affected
xpdf Not affected Not affected Not in release Not affected
koffice Not in release Not in release Not in release Not in release
tetex-bin Not in release Not in release Not in release Not in release
kdegraphics Not in release Not in release Not in release Not in release
gpdf Not in release Not in release Not in release Not in release
pdftohtml Not in release Not in release Not in release Not in release
libextractor Not affected Not affected Not affected Not affected
pdfkit.framework Not in release Not in release Not in release Not in release
Show all 11 packages Show less packages
  1. Previous page
  2. 14
  3. 15
  4. 16
  5. 17
  6. 18
  7. Next page
Export to JSON