cbcvebase.

Freedesktop Poppler vulnerabilities

157 known vulnerabilities affecting freedesktop/poppler.

Total CVEs
157
CISA KEV
1
actively exploited
Public exploits
4
Exploited in wild
1
Severity breakdown
CRITICAL9HIGH52MEDIUM92LOW4

Vulnerabilities

Page 1 of 8
CVE-2021-30860P1HIGHCVSS 7.8KEVfixed in 22.09.02021-08-24
CVE-2021-30860 [HIGH] CWE-190 CVE-2021-30860: An integer overflow was addressed with improved input validation. This issue is fixed in Security Up An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, watchOS 7.6.2. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
nvd
CVE-2008-2950P3HIGHCVSS 7.5PoC≥ 0, < 0.8.4-1.12008-07-07
CVE-2008-2950 [HIGH] CVE-2008-2950: The Page destructor in Page The Page destructor in Page.cc in libpoppler in Poppler 0.8.4 and earlier deletes a pageWidgets object even if it is not initialized by a Page constructor, which allows remote attackers to execute arbitrary code via a crafted PDF document.
osv
CVE-2013-4474P4MEDIUMCVSS 5.0PoC≤ 0.24.1v0.1+118 more2013-11-23
CVE-2013-4474 [MEDIUM] CWE-20 CVE-2013-4474: Format string vulnerability in the extractPages function in utils/pdfseparate.cc in poppler before 0 Format string vulnerability in the extractPages function in utils/pdfseparate.cc in poppler before 0.24.3 allows remote attackers to cause a denial of service (crash) via format string specifiers in a destination filename.
nvdosv
CVE-2009-3608P3CRITICALCVSS 9.3≥ 0, < 0.12.2-12009-10-21
CVE-2009-3608 [CRITICAL] CVE-2009-3608: Integer overflow in the ObjectStream::ObjectStream function in XRef Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.
osv
CVE-2009-3606P3CRITICALCVSS 9.3≥ 0, < 0.12.2-12009-10-21
CVE-2009-3606 [CRITICAL] CVE-2009-3606: Integer overflow in the PSOutputDev::doImageL1Sep function in Xpdf before 3 Integer overflow in the PSOutputDev::doImageL1Sep function in Xpdf before 3.02pl4, and Poppler 0.x, as used in kdegraphics KPDF, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.
osv
CVE-2009-0755P4MEDIUMCVSS 5.0PoC≥ 0, < 0.10.6-12009-03-03
CVE-2009-0755 [MEDIUM] CVE-2009-0755: The FormWidgetChoice::loadDefaults function in Poppler before 0 The FormWidgetChoice::loadDefaults function in Poppler before 0.10.4 allows remote attackers to cause a denial of service (crash) via a PDF file with an invalid Form Opt entry.
osv
CVE-2009-0756P4MEDIUMCVSS 5.0PoC≥ 0, < 0.10.6-12009-03-03
CVE-2009-0756 [MEDIUM] CVE-2009-0756: The JBIG2Stream::readSymbolDictSeg function in Poppler before 0 The JBIG2Stream::readSymbolDictSeg function in Poppler before 0.10.4 allows remote attackers to cause a denial of service (crash) via a PDF file that triggers a parsing error, which is not properly handled by JBIG2SymbolDict::~JBIG2SymbolDict and triggers an invalid memory dereference.
osv
CVE-2017-2820P3HIGHCVSS 8.8v0.53.02017-07-12
CVE-2017-2820 [HIGH] CWE-190 CVE-2017-2820: An exploitable integer overflow vulnerability exists in the JPEG 2000 image parsing functionality of An exploitable integer overflow vulnerability exists in the JPEG 2000 image parsing functionality of freedesktop.org Poppler 0.53.0. A specially crafted PDF file can lead to an integer overflow causing out of bounds memory overwrite on the heap resulting in potential arbitrary code execution. To trigger this vulnerability, a victim must open the malicio
nvdosv
CVE-2009-1182P3HIGHCVSS 7.5≥ 0, < 0.10.6-12009-04-23
CVE-2009-1182 [HIGH] CVE-2009-1182: Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf 3 Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file.
osv
CVE-2019-9200P3HIGHCVSS 8.8v0.74.02019-02-26
CVE-2019-9200 [HIGH] CWE-787 CVE-2019-9200: A heap-based buffer underwrite exists in ImageStream::getLine() located at Stream.cc in Poppler 0.74 A heap-based buffer underwrite exists in ImageStream::getLine() located at Stream.cc in Poppler 0.74.0 that can (for example) be triggered by sending a crafted PDF file to the pdfimages binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact.
nvdosv
CVE-2009-3604P3CRITICALCVSS 9.3≥ 0, < 0.12.2-12009-10-21
CVE-2009-3604 [CRITICAL] CVE-2009-3604: The Splash::drawImage function in Splash The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document that triggers a NULL pointer dereference or a heap-based buffer overflow.
osv
CVE-2017-2814P3HIGHCVSS 8.8v0.53.02017-07-12
CVE-2017-2814 [HIGH] CWE-119 CVE-2017-2814: An exploitable heap overflow vulnerability exists in the image rendering functionality of Poppler 0. An exploitable heap overflow vulnerability exists in the image rendering functionality of Poppler 0.53.0. A specifically crafted pdf can cause an image resizing after allocation has already occurred, resulting in heap corruption which can lead to code execution. An attacker controlled PDF file can be used to trigger this vulnerability.
nvd
CVE-2007-5392P3CRITICALCVSS 9.3≥ 0, < 0.6.2-12007-11-08
CVE-2007-5392 [CRITICAL] CVE-2007-5392: Integer overflow in the DCTStream::reset method in xpdf/Stream Integer overflow in the DCTStream::reset method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote attackers to execute arbitrary code via a crafted PDF file, resulting in a heap-based buffer overflow.
osv
CVE-2012-2142P3HIGHCVSS 7.8fixed in 0.21.42020-01-09
CVE-2012-2142 [HIGH] CVE-2012-2142: The error function in Error.cc in poppler before 0.21.4 allows remote attackers to execute arbitrary The error function in Error.cc in poppler before 0.21.4 allows remote attackers to execute arbitrary commands via a PDF containing an escape sequence for a terminal emulator.
nvdosv
CVE-2009-3603P3MEDIUMCVSS 5.0≥ 0, < 0.12.2-12009-10-21
CVE-2009-3603 [MEDIUM] CVE-2009-3603: Integer overflow in the SplashBitmap::SplashBitmap function in Xpdf 3 Integer overflow in the SplashBitmap::SplashBitmap function in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1 might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2009-1188.
osv
CVE-2009-4035P3CRITICALCVSS 9.3≥ 0, < 0.5.1-12009-12-21
CVE-2009-4035 [CRITICAL] CVE-2009-4035: The FoFiType1::parse function in fofi/FoFiType1 The FoFiType1::parse function in fofi/FoFiType1.cc in Xpdf 3.0.0, gpdf 2.8.2, kpdf in kdegraphics 3.3.1, and possibly other libraries and versions, does not check the return value of the getNextLine function, which allows context-dependent attackers to execute arbitrary code via a PDF file with a crafted Type 1 font that can produce a negative value, leading to a signed-to-unsigned integer conversion error an
osv
CVE-2013-4473P3HIGHCVSS 7.5≤ 0.24.1v0.1+118 more2013-11-23
CVE-2013-4473 [HIGH] CWE-119 CVE-2013-4473: Stack-based buffer overflow in the extractPages function in utils/pdfseparate.cc in poppler before 0 Stack-based buffer overflow in the extractPages function in utils/pdfseparate.cc in poppler before 0.24.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a source filename.
nvdosv
CVE-2017-2818P3HIGHCVSS 8.8v0.53.02017-07-12
CVE-2017-2818 [HIGH] CWE-119 CVE-2017-2818: An exploitable heap overflow vulnerability exists in the image rendering functionality of Poppler 0. An exploitable heap overflow vulnerability exists in the image rendering functionality of Poppler 0.53.0. A specifically crafted PDF can cause an overly large number of color components during image rendering, resulting in heap corruption. An attacker controlled PDF file can be used to trigger this vulnerability.
nvd
CVE-2007-5393P3CRITICALCVSS 9.3≥ 0, < 0.6.2-12007-11-08
CVE-2007-5393 [CRITICAL] CVE-2007-5393: Heap-based buffer overflow in the CCITTFaxStream::lookChar method in xpdf/Stream Heap-based buffer overflow in the CCITTFaxStream::lookChar method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote attackers to execute arbitrary code via a PDF file that contains a crafted CCITTFaxDecode filter.
osv
CVE-2009-3607P3CRITICALCVSS 9.3≥ 0, < 0.12.2-12009-10-21
CVE-2009-3607 [CRITICAL] CVE-2009-3607: Integer overflow in the create_surface_from_thumbnail_data function in glib/poppler-page Integer overflow in the create_surface_from_thumbnail_data function in glib/poppler-page.cc in Poppler 0.x allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
osv
Freedesktop Poppler vulnerabilities | cvebase