Lucene search
Redhat.comRH:CVE-2019-12957HistoryMay 20, 2022 - 11:56 p.m.
CVE-2019-12957
2022-05-2023:56:11
redhat.com
access.redhat.com
7
xpdf vulnerability
buffer over-read
fofitype1c::converttotype1
crafted pdf
pdftops
denial of service
information leak
unspecified impact
EPSS
0.002
Percentile
55.7%
In Xpdf 4.01.01, a buffer over-read could be triggered in FoFiType1C::convertToType1 in fofi/FoFiType1C.cc when the index number is larger than the charset array bounds. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It allows an attacker to use a crafted pdf file to cause Denial of Service or an information leak, or possibly have unspecified other impact.
Related
nvd
nvd
CVE-2019-12957
2019-06-25 00:15:09
cve
cve
CVE-2019-12957
2019-06-25 00:15:09
debiancve
debiancve
CVE-2019-12957
2019-06-25 00:15:09
cvelist
cvelist
CVE-2019-12957
2019-06-24 23:27:17
ubuntucve
ubuntucve
CVE-2019-12957
2019-06-25 00:00:00
prion
prion
Design/Logic Flaw
2019-06-25 00:15:00
fedora
fedora
[SECURITY] Fedora 31 Update: xpdf-4.02-1.fc31
2019-10-26 17:37:03
[SECURITY] Fedora 29 Update: xpdf-4.02-1.fc29
2019-10-25 18:09:53
[SECURITY] Fedora 30 Update: xpdf-4.02-1.fc30
2019-10-25 17:04:25
openvas
openvas
Fedora Update for xpdf FEDORA-2019-759ba8202b
2020-01-09 00:00:00
Fedora Update for xpdf FEDORA-2019-a457286734
2019-10-26 00:00:00
Fedora Update for xpdf FEDORA-2019-01da705767
2019-10-26 00:00:00
nessus
nessus
Fedora 30 : 1:xpdf (2019-a457286734)
2019-10-28 00:00:00
Fedora 31 : 1:xpdf (2019-759ba8202b)
2019-10-28 00:00:00
Fedora 29 : 1:xpdf (2019-01da705767)
2019-10-28 00:00:00