CVE search results

51 – 60 of 77 results

Detailed view

Sort by:

CVE-2007-5393

Medium priority

Some fixes available 25 of 36

Heap-based buffer overflow in the CCITTFaxStream::lookChar method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote attackers to execute arbitrary code via a PDF file that contains a crafted CCITTFaxDecode filter.

13 affected packages

cups, cupsys, gpdf, ipe, kdegraphics...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cups	—	—	—	—	—
cupsys	—	—	—	—	—
gpdf	—	—	—	—	—
ipe	—	—	—	—	—
kdegraphics	—	—	—	—	—
koffice	—	—	—	—	—
libextractor	—	—	—	—	—
pdfkit.framework	—	—	—	—	—
pdftohtml	—	—	—	—	—
poppler	—	—	—	—	—
tetex-bin	—	—	—	—	—
texlive-bin	—	—	—	—	—
xpdf	—	—	—	—	—

CVE-2007-5392

Medium priority

Some fixes available 25 of 36

Integer overflow in the DCTStream::reset method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote attackers to execute arbitrary code via a crafted PDF file, resulting in a heap-based buffer overflow.

13 affected packages

cups, cupsys, gpdf, ipe, kdegraphics...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cups	—	—	—	—	—
cupsys	—	—	—	—	—
gpdf	—	—	—	—	—
ipe	—	—	—	—	—
kdegraphics	—	—	—	—	—
koffice	—	—	—	—	—
libextractor	—	—	—	—	—
pdfkit.framework	—	—	—	—	—
pdftohtml	—	—	—	—	—
poppler	—	—	—	—	—
tetex-bin	—	—	—	—	—
texlive-bin	—	—	—	—	—
xpdf	—	—	—	—	—

CVE-2007-4352

Medium priority

Some fixes available 25 of 36

Array index error in the DCTStream::readProgressiveDataUnit method in xpdf/Stream.cc in Xpdf 3.02pl1, as used in poppler, teTeX, KDE, KOffice, CUPS, and other products, allows remote attackers to trigger memory corruption and...

13 affected packages

cups, cupsys, gpdf, ipe, kdegraphics...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cups	—	—	—	—	—
cupsys	—	—	—	—	—
gpdf	—	—	—	—	—
ipe	—	—	—	—	—
kdegraphics	—	—	—	—	—
koffice	—	—	—	—	—
libextractor	—	—	—	—	—
pdfkit.framework	—	—	—	—	—
pdftohtml	—	—	—	—	—
poppler	—	—	—	—	—
tetex-bin	—	—	—	—	—
texlive-bin	—	—	—	—	—
xpdf	—	—	—	—	—

CVE-2007-4351

Low priority

Fixed

Off-by-one error in the ippReadIO function in cups/ipp.c in CUPS 1.3.3 allows remote attackers to cause a denial of service (crash) via a crafted (1) textWithLanguage or (2) nameWithLanguage Internet Printing Protocol (IPP) tag,...

1 affected packages

cupsys

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cupsys	—	—	—	—	—

CVE-2007-4045

Unknown priority

Not affected

The CUPS service, as used in SUSE Linux before 20070720 and other Linux distributions, allows remote attackers to cause a denial of service via unspecified vectors related to an incomplete fix for CVE-2007-0720 that introduced a...

1 affected packages

cupsys

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cupsys	—	—	—	—	—

CVE-2007-0720

Unknown priority

Ignored

The CUPS service on multiple platforms allows remote attackers to cause a denial of service (service hang) via a "partially-negotiated" SSL connection, which prevents other requests from being accepted.

1 affected packages

cupsys

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cupsys	—	—	—	—	—

CVE-2006-1244

Unknown priority

Some fixes available 4 of 5

Unspecified vulnerability in certain versions of xpdf after 3.00, as used in various products including (a) pdfkit.framework, (b) gpdf, (c) pdftohtml, and (d) libextractor, has unknown impact and user-assisted attack vectors,...

6 affected packages

cupsys, gpdf, kdegraphics, koffice, poppler, tetex-bin

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cupsys	—	—	—	—	—
gpdf	—	—	—	—	—
kdegraphics	—	—	—	—	—
koffice	—	—	—	—	—
poppler	—	—	—	—	—
tetex-bin	—	—	—	—	—

CVE-2005-4873

Medium priority

Not affected

Multiple stack-based buffer overflows in the phpcups PHP module for CUPS 1.1.23rc1 might allow context-dependent attackers to execute arbitrary code via vectors that result in long function parameters, as demonstrated by...

1 affected packages

cupsys

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cupsys	—	—	—	—	—

CVE-2005-3627

Unknown priority

Fixed

Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via a DCTDecode stream with (1) a large...

6 affected packages

cupsys, gpdf, kdegraphics, koffice, poppler, tetex-bin

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cupsys	—	—	—	—	—
gpdf	—	—	—	—	—
kdegraphics	—	—	—	—	—
koffice	—	—	—	—	—
poppler	—	—	—	—	—
tetex-bin	—	—	—	—	—

CVE-2005-3625

Unknown priority

Fixed

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1)...

6 affected packages

cupsys, gpdf, kdegraphics, koffice, poppler, tetex-bin

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
cupsys	—	—	—	—	—
gpdf	—	—	—	—	—
kdegraphics	—	—	—	—	—
koffice	—	—	—	—	—
poppler	—	—	—	—	—
tetex-bin	—	—	—	—	—

Export to JSON

Results by page:

Search CVE reports