vulnerability

Gentoo Linux: CVE-2022-27135: Xpdf: Multiple Vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:N/A:P)	Apr 25, 2022	May 8, 2024	Aug 13, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:P)

Published

Apr 25, 2022

Added

May 8, 2024

Modified

Aug 13, 2025

Description

xpdf 4.03 has heap buffer overflow in the function readXRefTable located in XRef.cc. An attacker can exploit this bug to cause a Denial of Service (Segmentation fault) or other unspecified effects by sending a crafted PDF file to the pdftoppm binary.

Solution

gentoo-linux-upgrade-app-text-xpdf

References

CVE-2022-27135
https://attackerkb.com/topics/CVE-2022-27135
CWE-787
GENTOO-202405-18

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today