CVE CyberSecurity Database News

CVE-2022-35094 DCTStream::readHuffSym() has a buffer overflow issue and can be exploited via a heap-buffer overflow.

Poster -

This issue may lead to denial of service (DoS). It was resolved by revising the code to use an array of pointers rather than an array of integers.

CVE-2018-6200 was discovered in FTStream::readHuff(FTHuffTable*, FTStream*) at /xpdf/Stream.cc. This issue may lead to denial of service (DoS). It was resolved by revising the code to verify the size of the array prior to accessing it.

CVE-2018-6200 was discovered in FTStream::readHuff(FTHuffTable*, FTStream*) at /xpdf/Stream.cc. This issue may lead to denial of service (DoS). It was resolved by revising the code such that the length of the buffer is checked prior to usage.

CVE-2018-6200 was discovered in FTStream::readHuff(FTHuffTable*, FTStream*) at /xpdf/Stream.cc. This issue may lead to denial of service (DoS). It was resolved by revising the code such that the length of the buffer is checked prior to usage.

CVE-2018-6200 was discovered in FTStream::readHuff(FTHuffTable*, FTStream*) at /xpdf/Stream.cc. This issue may lead to denial of service (DoS). It was resolved by revising the code such that the length of the buffer is checked prior to usage.

Checkpoints

CVE-2018-6200 was discovered in FTStream::readHuff(FTHuffTable*, FTStream*) at /xpdf/Stream.cc. This issue may lead to denial of service (DoS). It was resolved by revising the code such that the length of the buffer is checked prior to usage.

CVE-2018-6200 was discovered in FTStream::readHuff(FTHuffTable*, FTStream*) at /xpdf/Stream.cc. This issue may lead to denial of service (DoS). It was resolved by revising the code such that the length of the buffer is checked prior to usage.

Running xpdf on Linux may result in crash

A vulnerability has been discovered in the xpdf graphical application on Linux that may lead to denial of service (DoS). It was resolved by adding additional logging information.
The issue may lead to denial of service (DoS). It was resolved by revising the code to use an array of pointers rather than an array of integers.

CVE-2018-6200 was discovered in FTStream::readHuff(FTHuffTable*, FTStream*) at /xpdf/Stream.cc. This issue may lead to denial of service (DoS). It was resolved by revising the code such that the length of the buffer is checked prior to usage.

Timeline

Published on: 09/23/2022 18:15:00 UTC
Last modified on: 09/27/2022 04:21:00 UTC

References