cbcvebase.

Freedesktop Poppler vulnerabilities

157 known vulnerabilities affecting freedesktop/poppler.

Total CVEs
157
CISA KEV
1
actively exploited
Public exploits
4
Exploited in wild
1
Severity breakdown
CRITICAL9HIGH52MEDIUM92LOW4

Vulnerabilities

Page 8 of 8
CVE-2019-10025P4MEDIUMCVSS 5.5≥ 0, < 0.41.0-0ubuntu1.13≥ 0, < 0.62.0-2ubuntu2.82019-03-25
CVE-2019-10025 [MEDIUM] CVE-2019-10025: An issue was discovered in Xpdf 4 An issue was discovered in Xpdf 4.01.01. There is an FPE in the function ImageStream::ImageStream at Stream.cc for nBits.
osv
CVE-2009-0147P4MEDIUMCVSS 4.3≥ 0, < 0.10.6-12009-04-23
CVE-2009-0147 [MEDIUM] CVE-2009-0147: Multiple integer overflows in the JBIG2 decoder in Xpdf 3 Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2Stream::readSymbolDictSeg, (2) JBIG2Stream::readSymbolDictSeg, and (3) JBIG2Stream::readGenericBitmap.
osv
CVE-2009-0166P4MEDIUMCVSS 4.3≥ 0, < 0.10.6-12009-04-23
CVE-2009-0166 [MEDIUM] CVE-2009-0166: The JBIG2 decoder in Xpdf 3 The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers a free of uninitialized memory.
osv
CVE-2005-3626P4MEDIUMCVSS 5.0≥ 0, < 0.4.3-22005-12-31
CVE-2005-3626 [MEDIUM] CVE-2005-3626: Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference.
osv
CVE-2017-7515P4MEDIUMCVSS 5.5≤ 0.55.02017-06-06
CVE-2017-7515 [MEDIUM] CWE-674 CVE-2017-7515: poppler through version 0.55.0 is vulnerable to an uncontrolled recursion in pdfunite resulting into poppler through version 0.55.0 is vulnerable to an uncontrolled recursion in pdfunite resulting into potential denial-of-service.
nvdosv
CVE-2017-14517P4MEDIUMCVSS 5.5v0.59.02017-09-17
CVE-2017-14517 [MEDIUM] CWE-476 CVE-2017-14517: In Poppler 0.59.0, a NULL Pointer Dereference exists in the XRef::parseEntry() function in XRef.cc v In Poppler 0.59.0, a NULL Pointer Dereference exists in the XRef::parseEntry() function in XRef.cc via a crafted PDF document.
nvdosv
CVE-2023-34872P4MEDIUMCVSS 5.5fixed in 23.06.02023-07-31
CVE-2023-34872 [MEDIUM] CWE-400 CVE-2023-34872: A vulnerability in Outline.cc for Poppler prior to 23.06.0 allows a remote attacker to cause a Denia A vulnerability in Outline.cc for Poppler prior to 23.06.0 allows a remote attacker to cause a Denial of Service (DoS) (crash) via a crafted PDF file in OutlineItem::open.
nvdosv
CVE-2017-14927P4MEDIUMCVSS 5.5v0.59.02017-09-30
CVE-2017-14927 [MEDIUM] CWE-476 CVE-2017-14927: In Poppler 0.59.0, a NULL Pointer Dereference exists in the SplashOutputDev::type3D0() function in S In Poppler 0.59.0, a NULL Pointer Dereference exists in the SplashOutputDev::type3D0() function in SplashOutputDev.cc via a crafted PDF document.
nvdosv
CVE-2017-14928P4MEDIUMCVSS 5.5v0.59.02017-09-30
CVE-2017-14928 [MEDIUM] CWE-476 CVE-2017-14928: In Poppler 0.59.0, a NULL Pointer Dereference exists in AnnotRichMedia::Configuration::Configuration In Poppler 0.59.0, a NULL Pointer Dereference exists in AnnotRichMedia::Configuration::Configuration in Annot.cc via a crafted PDF document.
nvdosv
CVE-2017-14926P4MEDIUMCVSS 5.5v0.59.02017-09-30
CVE-2017-14926 [MEDIUM] CWE-476 CVE-2017-14926: In Poppler 0.59.0, a NULL Pointer Dereference exists in AnnotRichMedia::Content::Content in Annot.cc In Poppler 0.59.0, a NULL Pointer Dereference exists in AnnotRichMedia::Content::Content in Annot.cc via a crafted PDF document.
nvdosv
CVE-2025-32364P4MEDIUMCVSS 5.5fixed in 25.04.02025-04-05
CVE-2025-32364 [MEDIUM] CWE-190 CVE-2025-32364: A floating-point exception in the PSStack::roll function of Poppler before 25.04.0 can cause an appl A floating-point exception in the PSStack::roll function of Poppler before 25.04.0 can cause an application to crash when handling malformed inputs associated with INT_MIN.
nvdosv
CVE-2010-3703P4MEDIUMCVSS 4.3≥ 0, < 0.12.4-1.22010-11-05
CVE-2010-3703 [MEDIUM] CVE-2010-3703: The PostScriptFunction::PostScriptFunction function in poppler/Function The PostScriptFunction::PostScriptFunction function in poppler/Function.cc in the PDF parser in poppler 0.8.7 and possibly other versions up to 0.15.1, and possibly other products, allows context-dependent attackers to cause a denial of service (crash) via a PDF file that triggers an uninitialized pointer dereference.
osv
CVE-2010-0207P4MEDIUMCVSS 5.5≥ 0, < 0.16.3-12019-10-30
CVE-2010-0207 [MEDIUM] CVE-2010-0207: In xpdf, the xref table contains an infinite loop which allows remote attackers to cause a denial of service (application crash) in xpdf-based PDF vie In xpdf, the xref table contains an infinite loop which allows remote attackers to cause a denial of service (application crash) in xpdf-based PDF viewers.
osv
CVE-2013-4472P4LOWCVSS 3.3≤ 0.24.3v0.24.0+2 more2014-04-22
CVE-2013-4472 [LOW] CWE-59 CVE-2013-4472: The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 and earlier, when running on a The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 and earlier, when running on a system other than Unix, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.
nvd
CVE-2025-43903P4LOWCVSS 3.3fixed in 25.04.02025-04-18
CVE-2025-43903 [LOW] CWE-347 CVE-2025-43903: NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the adbe.pkcs7.sha1 signatures on NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the adbe.pkcs7.sha1 signatures on documents, resulting in potential signature forgeries.
nvdosv
CVE-2025-43718P4LOWCVSS 2.9≥ 24.06.1, < 25.04.02025-10-01
CVE-2025-43718 [LOW] CWE-674 CVE-2025-43718: Poppler 24.06.1 through 25.x before 25.04.0 allows stack consumption and a SIGSEGV via deeply nested Poppler 24.06.1 through 25.x before 25.04.0 allows stack consumption and a SIGSEGV via deeply nested structures within the metadata (such as GTS_PDFEVersion) of a PDF document, e.g., a regular expression for a long pdfsubver string. This occurs in Dict::lookup, Catalog::getMetadata, and associated functions in PDFDoc, with deep recursion in the regex e
nvdosv
CVE-2005-2097P4LOWCVSS 2.1≥ 0, < 0.4.0-12005-08-16
CVE-2005-2097 [LOW] CVE-2005-2097: xpdf and kpdf do not properly validate the "loca" table in PDF files, which allows local users to cause a denial of service (disk consumption and hang xpdf and kpdf do not properly validate the "loca" table in PDF files, which allows local users to cause a denial of service (disk consumption and hang) via a PDF file with a "broken" loca table, which causes a large temporary file to be created when xpdf attempts to reconstruct the information.
osv
Freedesktop Poppler vulnerabilities | cvebase