Search CVE reports

Toggle filters

11 – 19 of 19 results

CVE-2015-9252

Low priority
Fixed

An issue was discovered in QPDF before 7.0.0. Endless recursion causes stack exhaustion in QPDFTokenizer::resolveLiteral() in QPDFTokenizer.cc, related to the QPDF::resolve function in QPDF.cc.

1 affected package

qpdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qpdf Not affected Fixed
Show less packages

CVE-2017-12595

Low priority

Some fixes available 2 of 3

The tokenizer in QPDF 6.0.0 and 7.0.b1 is recursive for arrays and dictionaries, which allows remote attackers to cause a denial of service (stack consumption and segmentation fault) or possibly have unspecified other impact via a...

1 affected package

qpdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qpdf Not affected Fixed
Show less packages

CVE-2017-11627

Negligible priority

Some fixes available 2 of 3

A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the PointerHolder function in PointerHolder.hh, aka an "infinite loop."

1 affected package

qpdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qpdf Not affected Fixed
Show less packages

CVE-2017-11626

Negligible priority

Some fixes available 2 of 3

A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in QPDFTokenizer.cc after four...

1 affected package

qpdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qpdf Not affected Fixed
Show less packages

CVE-2017-11625

Negligible priority

Some fixes available 2 of 3

A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDF::resolveObjectsInStream function in QPDF.cc, aka an "infinite loop."

1 affected package

qpdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qpdf Not affected Fixed
Show less packages

CVE-2017-11624

Negligible priority

Some fixes available 2 of 3

A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in QPDFTokenizer.cc after...

1 affected package

qpdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qpdf Not affected Fixed
Show less packages

CVE-2017-9210

Negligible priority

Some fixes available 2 of 3

libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document, related to unparse functions, aka qpdf-infiniteloop3.

1 affected package

qpdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qpdf Not affected Fixed
Show less packages

CVE-2017-9209

Negligible priority

Some fixes available 2 of 3

libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document, related to QPDFObjectHandle::parseInternal, aka qpdf-infiniteloop2.

1 affected package

qpdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qpdf Not affected Fixed
Show less packages

CVE-2017-9208

Negligible priority

Some fixes available 2 of 3

libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document, related to releaseResolved functions, aka qpdf-infiniteloop1.

1 affected package

qpdf

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
qpdf Not affected Fixed
Show less packages
  1. Previous page
  2. 1
  3. 2
  4. Next page
Export to JSON