CNNVD-202510-2286 Information
Oct 16, 2025
cve
CNNVD ID
CNNVD-202510-2286
Related CVE
- CNNVD Published: 2025-10-16
Description (Chinese)
Xpdf是Xpdf公司的一个免费的 PDF 查看器和工具包,包括文本提取器、图像转换器、HTML 转换器等。 Xpdf 4.05及之前版本存在安全漏洞,该漏洞源于CMap中的PDF对象循环导致无限递归,可能导致栈溢出。
Description (English)
Xpdf is a free PDF viewer and toolkit for Xpdf, including text extracters, image converters, HTML converters, etc. Xpdf 4.05 and previous versions contain a security loop, which originates from the PDF object cycle in CMap and leads to unlimited regression, which may lead to a spill.
Hazard Level
High
Vulnerability Type
其他
Published
2025-10-16
Last Modified
2026-02-24
References
https://www.xpdfreader.com/security-bug/object-loops.html https://vigilance.fr/vulnerability/Xpdf-denial-of-service-via-UseCMap-48790
Share on: