FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-05-02 10:37:19 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
bc20510f-4dd4-11dd-93e7-0211d880e350	poppler -- uninitialized pointer Felipe Andres Manzano reports: The libpoppler pdf rendering library, can free uninitialized pointers, leading to arbitrary code execution. This vulnerability results from memory management bugs in the Page class constructor/destructor. Discovery 2008-07-07 Entry 2008-07-09 poppler < 0.8.4_2 CVE-2008-2950 http://milw0rm.com/exploits/6032
eca2d861-76f4-42ed-89d2-23a2cb396c87	poppler -- multiple denial of service issues Poppler developers report: Poppler is prone to a stack-based buffer-overflow vulnerability. Successful exploits may allow attackers to crash the affected application, resulting in denial-of-service condition. Due to the nature of this issue, arbitrary code execution may be possible but this has not been confirmed. Discovery 2017-06-21 Entry 2017-08-24 poppler < 0.56.0 http://www.securityfocus.com/bid/99241/discuss CVE-2017-9865 CVE-2017-9775
50d233d9-374b-46ce-922d-4e6b3f777bef	poppler -- Poppler Multiple Vulnerabilities Secunia reports: Some vulnerabilities have been reported in Poppler which can be exploited by malicious people to potentially compromise an application using the library. Discovery 2009-04-17 Entry 2009-04-18 poppler < 0.10.6 http://secunia.com/advisories/34746/

VuXML ID

Description

bc20510f-4dd4-11dd-93e7-0211d880e350

poppler -- uninitialized pointer

Felipe Andres Manzano reports:

The libpoppler pdf rendering library, can free uninitialized pointers, leading to arbitrary code execution. This vulnerability results from memory management bugs in the Page class constructor/destructor.

Discovery 2008-07-07
Entry 2008-07-09
poppler

< 0.8.4_2

CVE-2008-2950
http://milw0rm.com/exploits/6032

eca2d861-76f4-42ed-89d2-23a2cb396c87

poppler -- multiple denial of service issues

Poppler developers report:

Poppler is prone to a stack-based buffer-overflow vulnerability.

Successful exploits may allow attackers to crash the affected application, resulting in denial-of-service condition. Due to the nature of this issue, arbitrary code execution may be possible but this has not been confirmed.

Discovery 2017-06-21
Entry 2017-08-24
poppler

< 0.56.0

http://www.securityfocus.com/bid/99241/discuss
CVE-2017-9865
CVE-2017-9775

50d233d9-374b-46ce-922d-4e6b3f777bef

poppler -- Poppler Multiple Vulnerabilities

Secunia reports:

Some vulnerabilities have been reported in Poppler which can be exploited by malicious people to potentially compromise an application using the library.

Discovery 2009-04-17
Entry 2009-04-18
poppler

< 0.10.6

http://secunia.com/advisories/34746/