| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|
| CVE-2024-24246 | vulnerable | fixed | fixed | fixed | vulnerable (no DSA) | fixed | fixed | Heap Buffer Overflow vulnerability in qpdf 11.9.0 allows attackers to ... |
| CVE-2021-36978 | vulnerable | fixed | fixed | fixed | fixed | fixed | fixed | QPDF 9.x through 9.1.1 and 10.x through 10.0.4 has a heap-based buffer ... |
| CVE-2021-25786 | vulnerable | fixed | fixed | fixed | fixed | fixed | fixed | An issue was discovered in QPDF version 10.0.4, allows remote attacker ... |
| CVE-2018-18020 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | In QPDF 8.2.1, in libqpdf/QPDFWriter.cc, QPDFWriter::unparseObject and ... |
| CVE-2018-9918 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | libqpdf.a in QPDF through 8.0.2 mishandles certain "expected dictionar ... |
| CVE-2017-18186 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | An issue was discovered in QPDF before 7.0.0. There is an infinite loo ... |
| CVE-2017-18185 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | An issue was discovered in QPDF before 7.0.0. There is a large heap-ba ... |
| CVE-2017-18184 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | An issue was discovered in QPDF before 7.0.0. There is a stack-based o ... |
| CVE-2017-18183 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | An issue was discovered in QPDF before 7.0.0. There is an infinite loo ... |
| CVE-2017-12595 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | The tokenizer in QPDF 6.0.0 and 7.0.b1 is recursive for arrays and dic ... |
| CVE-2017-11627 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, ... |
| CVE-2017-11626 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, ... |
| CVE-2017-11625 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, ... |
| CVE-2017-11624 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, ... |
| CVE-2017-9210 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of s ... |
| CVE-2017-9209 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of s ... |
| CVE-2017-9208 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of s ... |
| CVE-2015-9252 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | An issue was discovered in QPDF before 7.0.0. Endless recursion causes ... |