| Max CVSS | 9.3 | Min CVSS | 1.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2012-5660 | 6.9 |
abrt-action-install-debuginfo in Automatic Bug Reporting Tool (ABRT) 2.0.9 and earlier allows local users to set world-writable permissions for arbitrary files and possibly gain privileges via a symlink attack on "the directories used to store inform
|
13-02-2023 - 04:37 | 12-03-2013 - 23:55 | |
| CVE-2015-5302 | 5.0 |
libreport 2.0.7 before 2.6.3 only saves changes to the first file when editing a crash report, which allows remote attackers to obtain sensitive information via unspecified vectors related to the (1) backtrace, (2) cmdline, (3) environ, (4) open_fds,
|
13-02-2023 - 00:53 | 07-12-2015 - 18:59 | |
| CVE-2019-9959 | 4.3 |
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attac
|
11-02-2023 - 18:27 | 22-07-2019 - 15:15 | |
| CVE-2019-14494 | 4.3 |
An issue was discovered in Poppler through 0.78.0. There is a divide-by-zero error in the function SplashOutputDev::tilingPatternFill at SplashOutputDev.cc.
|
18-01-2023 - 21:19 | 01-08-2019 - 17:15 | |
| CVE-2019-15847 | 5.0 |
The POWER9 backend in GNU Compiler Collection (GCC) before version 10 could optimize multiple calls of the __builtin_darn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operati
|
17-09-2020 - 13:38 | 02-09-2019 - 23:15 | |
| CVE-2019-9631 | 7.5 |
Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function.
|
23-07-2020 - 12:15 | 08-03-2019 - 05:29 | |
| CVE-2018-13988 | 4.3 |
Poppler through 0.62 contains an out of bounds read vulnerability due to an incorrect memory access that is not mapped in its memory space, as demonstrated by pdfunite. This can result in memory corruption and denial of service. This may be exploitab
|
25-04-2019 - 14:16 | 25-07-2018 - 23:29 | |
| CVE-2017-9776 | 6.8 |
Integer overflow leading to Heap buffer overflow in JBIG2Stream.cc in pdftocairo in Poppler before 0.56 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PDF document.
|
12-03-2019 - 17:27 | 22-06-2017 - 21:29 | |
| CVE-2017-11671 | 2.1 |
Under certain circumstances, the ix86_expand_builtin function in i386.c in GNU Compiler Collection (GCC) version 4.6, 4.7, 4.8, 4.9, 5 before 5.5, and 6 before 6.4 will generate instruction sequences that clobber the status flag of the RDRAND and RDS
|
12-04-2018 - 01:29 | 26-07-2017 - 21:29 | |
| CVE-2015-3315 | 7.2 |
Automatic Bug Reporting Tool (ABRT) allows local users to read, change the ownership of, or have other unspecified impact on arbitrary files via a symlink attack on (1) /var/tmp/abrt/*/maps, (2) /tmp/jvm-*/hs_error.log, (3) /proc/*/exe, (4) /etc/os-r
|
19-02-2018 - 02:29 | 26-06-2017 - 15:29 | |
| CVE-2015-8868 | 9.3 |
Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction function in Poppler before 0.40.0 allows remote attackers to cause a denial of service (memory corruption and crash) or possibly execute arbitrary code via an invalid blend mo
|
05-01-2018 - 02:30 | 06-05-2016 - 17:59 | |
| CVE-2012-1106 | 1.9 |
The C handler plug-in in Automatic Bug Reporting Tool (ABRT), possibly 2.0.8 and earlier, does not properly set the group (GID) permissions on core dump files for setuid programs when the sysctl fs.suid_dumpable option is set to 2, which allows local
|
29-08-2017 - 01:31 | 03-07-2012 - 16:40 |