Download
| Alert*
oval:org.secpod.oval:def:602544
libpdfbox-java is installed oval:org.secpod.oval:def:2000624 In Apache PDFBox 1.8.0 to 1.8.14 and 2.0.0RC1 to 2.0.10, a carefully crafted file can trigger an infinite loop which leads to an out of memory exception in Apache PDFBox"s AFMParser. oval:org.secpod.oval:def:1901454 Apache PDFBox before 1.8.12 and 2.x before 2.0.1 does not properly initialize the XML parsers, which allows context-dependent attackers to conduct XML External Entity attacks via a crafted PDF. oval:org.secpod.oval:def:602543 It was discovered that pdfbox, a PDF library for Java, was susceptible to XML External Entity attacks. oval:org.secpod.oval:def:2001093 In Apache PDFBox 1.8.0 to 1.8.15 and 2.0.0RC1 to 2.0.11, a carefully crafted PDF file can trigger an extremely long running computation when parsing the page tree. oval:org.secpod.oval:def:1901877 In Apache PDFBox 1.8.0 to 1.8.15 and 2.0.0RC1 to 2.0.11 a carefully crafted PDF file can trigger an extremely long running computation when parsing the page tree. |