kermitt2/pdfalto

kermitt2/pdfalto

Releases5

Frequency1 year 11 months

Last Release 4 months ago

Stars269

PDF to XML ALTO file converter

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-32324 ↗	Jul 1, 2022Friday, 1 July 2022, 22:15	9.8 CRITICAL	7.5 HIGH
PDFAlto v0.4 was discovered to contain a heap buffer overflow via the component /pdfalto/src/pdfalto.cc.
CVE-2019-9878 ↗	Mar 21, 2019Thursday, 21 March 2019, 16:01	—	6.8 MEDIUM
There is an invalid memory access in the function GfxIndexedColorSpace::mapColorToBase() located in GfxState.cc in Xpdf 4.0.0, as used in pdfalto 0.2. It can be triggered by (for example) sending a crafted pdf file to the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact.
CVE-2018-18274 ↗	Oct 12, 2018Friday, 12 October 2018, 22:15	—	6.8 MEDIUM
A issue was found in pdfalto 0.2. There is a heap-based buffer overflow in the TextPage::addAttributsNode function in XmlAltoOutputDev.cc.
CVE-2018-17338 ↗	Sep 23, 2018Sunday, 23 September 2018, 05:29	—	6.8 MEDIUM
An issue has been found in pdfalto through 0.2. It is a heap-based buffer overflow in the function TextPage::dump in XmlAltoOutputDev.cc.