Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports

Toggle filters

171 – 180 of 197 results

CVE-2009-1180

Medium priority

Some fixes available 35 of 78

The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a free of invalid data.

14 affected packages

cups, cupsys, evince, gpdf, ipe...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cups Not affected Not affected Not affected Not affected
cupsys Not in release Not in release Not in release Not in release
evince Not affected Not affected Not affected Not affected
gpdf Not in release Not in release Not in release Not in release
ipe Not affected Not affected Not affected Not affected
kdegraphics Not in release Not in release Not in release Not in release
koffice Not in release Not in release Not in release Not in release
libextractor Not affected Not affected Not affected Not affected
pdfkit.framework Not in release Not in release Not in release Not in release
pdftohtml Not in release Not in release Not in release Not in release
poppler Fixed Fixed Fixed Fixed
tetex-bin Not in release Not in release Not in release Not in release
texlive-bin Not affected Not affected Not affected Not affected
xpdf Not affected Not in release Not affected Not affected
Show all 14 packages Show less packages

CVE-2009-1179

Medium priority

Some fixes available 35 of 78

Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file.

14 affected packages

cups, cupsys, evince, gpdf, ipe...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cups Not affected Not affected Not affected Not affected
cupsys Not in release Not in release Not in release Not in release
evince Not affected Not affected Not affected Not affected
gpdf Not in release Not in release Not in release Not in release
ipe Not affected Not affected Not affected Not affected
kdegraphics Not in release Not in release Not in release Not in release
koffice Not in release Not in release Not in release Not in release
libextractor Not affected Not affected Not affected Not affected
pdfkit.framework Not in release Not in release Not in release Not in release
pdftohtml Not in release Not in release Not in release Not in release
poppler Fixed Fixed Fixed Fixed
tetex-bin Not in release Not in release Not in release Not in release
texlive-bin Not affected Not affected Not affected Not affected
xpdf Not affected Not in release Not affected Not affected
Show all 14 packages Show less packages

CVE-2009-0800

Medium priority

Some fixes available 35 of 78

Multiple "input validation flaws" in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file.

14 affected packages

cups, cupsys, evince, gpdf, ipe...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cups Not affected Not affected Not affected Not affected
cupsys Not in release Not in release Not in release Not in release
evince Not affected Not affected Not affected Not affected
gpdf Not in release Not in release Not in release Not in release
ipe Not affected Not affected Not affected Not affected
kdegraphics Not in release Not in release Not in release Not in release
koffice Not in release Not in release Not in release Not in release
libextractor Not affected Not affected Not affected Not affected
pdfkit.framework Not in release Not in release Not in release Not in release
pdftohtml Not in release Not in release Not in release Not in release
poppler Fixed Fixed Fixed Fixed
tetex-bin Not in release Not in release Not in release Not in release
texlive-bin Not affected Not affected Not affected Not affected
xpdf Not affected Not in release Not affected Not affected
Show all 14 packages Show less packages

CVE-2009-0799

Medium priority

Some fixes available 35 of 78

The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers an out-of-bounds read.

14 affected packages

cups, cupsys, evince, gpdf, ipe...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cups Not affected Not affected Not affected Not affected
cupsys Not in release Not in release Not in release Not in release
evince Not affected Not affected Not affected Not affected
gpdf Not in release Not in release Not in release Not in release
ipe Not affected Not affected Not affected Not affected
kdegraphics Not in release Not in release Not in release Not in release
koffice Not in release Not in release Not in release Not in release
libextractor Not affected Not affected Not affected Not affected
pdfkit.framework Not in release Not in release Not in release Not in release
pdftohtml Not in release Not in release Not in release Not in release
poppler Fixed Fixed Fixed Fixed
tetex-bin Not in release Not in release Not in release Not in release
texlive-bin Not affected Not affected Not affected Not affected
xpdf Not affected Not in release Not affected Not affected
Show all 14 packages Show less packages

CVE-2009-0195

Medium priority

Some fixes available 35 of 78

Heap-based buffer overflow in Xpdf 3.02pl2 and earlier, CUPS 1.3.9, and probably other products, allows remote attackers to execute arbitrary code via a PDF file with crafted JBIG2 symbol dictionary segments.

11 affected packages

gpdf, ipe, kdegraphics, koffice, libextractor...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gpdf Not in release Not in release Not in release Not in release
ipe Not affected Not affected Not affected Not affected
kdegraphics Not in release Not in release Not in release Not in release
koffice Not in release Not in release Not in release Not in release
libextractor Not affected Not affected Not affected Not affected
pdfkit.framework Not in release Not in release Not in release Not in release
pdftohtml Not in release Not in release Not in release Not in release
poppler Fixed Fixed Fixed Fixed
tetex-bin Not in release Not in release Not in release Not in release
texlive-bin Not affected Not affected Not affected Not affected
xpdf Not affected Not in release Not affected Not affected
Show all 11 packages Show less packages

CVE-2009-0166

Medium priority

Some fixes available 35 of 78

The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers a free of uninitialized memory.

14 affected packages

cups, cupsys, evince, gpdf, ipe...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cups Not affected Not affected Not affected Not affected
cupsys Not in release Not in release Not in release Not in release
evince Not affected Not affected Not affected Not affected
gpdf Not in release Not in release Not in release Not in release
ipe Not affected Not affected Not affected Not affected
kdegraphics Not in release Not in release Not in release Not in release
koffice Not in release Not in release Not in release Not in release
libextractor Not affected Not affected Not affected Not affected
pdfkit.framework Not in release Not in release Not in release Not in release
pdftohtml Not in release Not in release Not in release Not in release
poppler Fixed Fixed Fixed Fixed
tetex-bin Not in release Not in release Not in release Not in release
texlive-bin Not affected Not affected Not affected Not affected
xpdf Not affected Not in release Not affected Not affected
Show all 14 packages Show less packages

CVE-2009-0165

Low priority

Some fixes available 2 of 37

Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, as used in Poppler and other products, when running on Mac OS X, has unspecified impact, related to "g*allocn."

11 affected packages

gpdf, ipe, kdegraphics, koffice, libextractor...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
gpdf Not in release Not in release Not in release Not in release
ipe Not affected Not affected Not affected Not affected
kdegraphics Not in release Not in release Not in release Not in release
koffice Not in release Not in release Not in release Not in release
libextractor Not affected Not affected Not affected Not affected
pdfkit.framework Not in release Not in release Not in release Not in release
pdftohtml Not in release Not in release Not in release Not in release
poppler Not affected Not affected Not affected Not affected
tetex-bin Not in release Not in release Not in release Not in release
texlive-bin Not affected Not affected Not affected Not affected
xpdf Not affected Not in release Not affected Not affected
Show all 11 packages Show less packages

CVE-2009-0147

Medium priority

Some fixes available 21 of 58

Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to...

14 affected packages

cups, cupsys, evince, gpdf, ipe...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cups Not affected
cupsys Not in release
evince Not affected
gpdf Not in release
ipe Not affected
kdegraphics Not in release
koffice Not in release
libextractor Not affected
pdfkit.framework Not in release
pdftohtml Not in release
poppler Fixed
tetex-bin Not in release
texlive-bin Not affected
xpdf Not affected
Show all 14 packages Show less packages

CVE-2009-0146

Medium priority

Some fixes available 21 of 51

Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to...

14 affected packages

cups, cupsys, evince, gpdf, ipe...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cups Not affected
cupsys Not in release
evince Not affected
gpdf Not in release
ipe Not affected
kdegraphics Not in release
koffice Not in release
libextractor Not affected
pdfkit.framework Not in release
pdftohtml Not in release
poppler Fixed
tetex-bin Not in release
texlive-bin Not affected
xpdf Not affected
Show all 14 packages Show less packages

CVE-2009-0756

Low priority

Some fixes available 3 of 4

The JBIG2Stream::readSymbolDictSeg function in Poppler before 0.10.4 allows remote attackers to cause a denial of service (crash) via a PDF file that triggers a parsing error, which is not properly handled...

1 affected packages

poppler

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
poppler
Show less packages
  1. Previous page
  2. 16
  3. 17
  4. 18
  5. 19
  6. 20
  7. Next page
Export to JSON