Skysider

**Name of the Vulnerable Software and Affected Versions** Poppler version 0.72.0 **Description** The issue is related to insufficient input validation in the Poppler library, which can lead to a denial of service. Specifically, it involves the construction of invalid rich media annotation assets in the AnnotRichMedia class in Annot.c. This can cause a reachable Object::getString assertion, allowing attackers to exploit the issue. **Recommendations** For Poppler version 0.72.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: xpdf version 4.00 Description: The issue allows attackers to launch a denial of service, resulting in a heap-based buffer over-read and application crash, via a specific pdf file. This can be demonstrated using the pdftohtml tool. Recommendations: For xpdf version 4.00, consider avoiding the use of the JPXStream::close function until a patch is available. As a temporary workaround, restrict the processing of pdf files from untrusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: xpdf version 4.00 Description: The issue allows attackers to launch a denial of service via a specific pdf file, resulting in a heap-based buffer over-read and application crash. This can be achieved by exploiting the JPXStream::inverseTransformLevel function in JPXStream.cc. Recommendations: For xpdf version 4.00, consider avoiding the use of the JPXStream::inverseTransformLevel function until a patch is available. As a temporary workaround, restrict the processing of pdf files that may trigger the heap-based buffer over-read to minimize the risk of application crash.

Name of the Vulnerable Software and Affected Versions: xpdf version 4.00 Description: The issue allows attackers to launch a denial of service, causing a buffer over-read and application crash, via a specific pdf file. This can be demonstrated using the pdftohtml tool. Recommendations: For xpdf version 4.00, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: xpdf version 4.00 Description: The issue allows attackers to launch a denial of service, causing a heap-based buffer over-read and application crash, via a specific pdf file. This can be demonstrated using the pdftohtml tool. Recommendations: For xpdf version 4.00, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: xpdf version 4.00 Description: The issue allows attackers to launch a denial of service, resulting in a heap-based buffer over-read and application crash, via a specific pdf file. This can be demonstrated using the pdftohtml tool. Recommendations: For xpdf version 4.00, consider updating to a newer version that addresses this issue, as the current version is susceptible to a denial of service attack. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: xpdf version 4.00 Description: The issue allows attackers to launch a denial of service, resulting in a heap-based buffer over-read and application crash, via a specific pdf file. This can be demonstrated using the pdftohtml tool. Recommendations: For xpdf version 4.00, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: xpdf version 4.00 Description: The issue allows attackers to launch a denial of service, causing a heap-based buffer overflow and application crash, or possibly have other unspecified impacts via a specific pdf file. This is demonstrated by the use of pdftohtml. Recommendations: For xpdf version 4.00, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.30 **Description** The issue is related to the `display debug ranges` function in `dwarf.c` and is caused by an integer overflow. This can allow remote attackers to cause a denial of service, resulting in an application crash, or possibly have other unspecified impacts. The vulnerability can be exploited via a crafted ELF file, as demonstrated by the `objdump` tool. **Recommendations** For GNU Binutils version 2.30, consider disabling the `display debug ranges` function as a temporary workaround until a patch is available. Restrict the use of `objdump` with untrusted ELF files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils versions 2.30 and earlier **Description** The issue is related to the `swap std reloc in` function in `aoutx.h` within the Binary File Descriptor (BFD) library, also known as `libbfd`. This function is vulnerable to a denial of service attack, where remote attackers can cause the application to crash due to a NULL pointer dereference in `aout 32 swap std reloc out`. This can be achieved by using a crafted ELF file, as demonstrated by the `objcopy` tool. **Recommendations** For GNU Binutils versions 2.30 and earlier, consider updating to a version that includes a fix for the `swap std reloc in` function issue. As a temporary workaround, consider restricting the use of the `swap std reloc in` function until a patch is available. Avoid using the `objcopy` tool with untrusted ELF files until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.30 **Description** The issue is related to an integer overflow in the `parse die` function, located in `dwarf1.c`, which can cause a denial of service (application crash) when processing an ELF file with corrupt dwarf1 debug information. This can be exploited by remote attackers. **Recommendations** For GNU Binutils version 2.30, consider updating to a newer version that addresses this issue, as the current version is affected by the integer overflow vulnerability in the `parse die` function.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.30 **Description** The issue is related to the `parse die` function in the `dwarf2.c` file of the Binary File Descriptor (BFD) library, also known as `libbfd`, which is part of GNU Binutils. It allows remote attackers to cause a denial of service, resulting in an integer underflow or overflow and an application crash, by using an ELF file with a corrupt DWARF FORM block. **Recommendations** For GNU Binutils version 2.30, consider updating to a newer version that contains a fix for this issue, as the current version is affected by the integer underflow or overflow vulnerability in the `dwarf2.c` file. As a temporary workaround, consider restricting the use of the `parse die` function in the `dwarf2.c` file until a patch is available.

**Name of the Vulnerable Software and Affected Versions** GNU Binutils version 2.30 **Description** The issue is related to the `assign file positions for non load sections` function in `elf.c` of the Binary File Descriptor (BFD) library. It allows remote attackers to cause a denial of service, resulting in a NULL pointer dereference and application crash, via an ELF file with a RELRO segment that lacks a matching LOAD segment. **Recommendations** For GNU Binutils version 2.30, consider avoiding the use of the `assign file positions for non load sections` function until a patch is available. As a temporary workaround, restrict the processing of ELF files with RELRO segments that lack matching LOAD segments to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** xpdf version 4.00 **Description** The issue is related to infinite recursion in the `AcroForm::scanField` function in `AcroForm.cc`, which can be exploited to launch a denial of service attack via a specific pdf file due to the lack of loop checking. This can be demonstrated using `pdftohtml`. The vulnerability allows attackers to initiate a denial of service. **Recommendations** For xpdf version 4.00, consider disabling the `AcroForm::scanField` function as a temporary workaround until a patch is available. Restrict access to pdf files that could potentially exploit this issue to minimize the risk of denial of service attacks.

**Name of the Vulnerable Software and Affected Versions** xpdf version 4.00 **Description** A NULL pointer dereference in `JPXStream::fillReadBuf` in `JPXStream.cc` allows attackers to launch a denial of service via a specific pdf file, as demonstrated by `pdftohtml`. **Recommendations** For xpdf version 4.00, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** xpdf version 4.00 **Description** A NULL pointer dereference in the `XFAForm::scanFields` function in `XFAForm.cc` allows attackers to launch a denial of service via a specific pdf file, as demonstrated by `pdftohtml`. **Recommendations** For xpdf version 4.00, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** xpdf version 4.00 **Description** The issue is related to an out-of-bounds read in the `JPXStream::readTilePart` function in `JPXStream.cc`. This can be exploited by attackers to launch a denial of service attack via a specifically crafted pdf file, as demonstrated by the `pdftohtml` tool. **Recommendations** For xpdf version 4.00, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** xpdf version 4.00 **Description** An issue in xpdf allows an attacker to cause denial of service due to an infinite loop in XRef::Xref. This occurs because loop detection exists only for tables, not streams. **Recommendations** For xpdf version 4.00, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** xpdf version 4.00 **Description** The issue allows an attacker to cause denial of service via a specific file due to inappropriate decoding in the JBIG2Stream::readSymbolDictSeg function. **Recommendations** For xpdf version 4.00, consider updating to a newer version that addresses this issue, as the current version may be prone to denial of service attacks due to the large loop in the JBIG2Stream::readSymbolDictSeg function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: GNU Binutils version 2.29 and earlier Description: The issue is related to a memory leak in the `decode line info` function in the `dwarf2.c` component of the Binary File Descriptor (BFD) library, also known as `libbfd`. This allows remote attackers to cause a denial of service by consuming memory via a crafted ELF file. The memory leak occurs due to a resource not being released after its valid usage period has expired. Recommendations: For GNU Binutils version 2.29 and earlier, consider updating to a newer version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.