CVE-2025-2574

Published: 03/20/2025 21:15:23
Out-of-bounds array write in Xpdf 4.05 and earlier, due to incorrect integer overflow checking in the PostScript function interpreter code.
Unknown
CVSS v2:

Status

DocFilters Release Package State Justification Comment
0.0.0.1 xpdf (4.05) Needs Triage
25.2 xpdf (4.05) Not Affected Protected At Runtime The DocumentFilters team manages to patch vulnerabilities independently of upstream security fixes. The issue was resolved without having to wait for an official patch.
25.1.1 xpdf (4.05) Not Affected Protected At Runtime The DocumentFilters team manages to patch vulnerabilities independently of upstream security fixes. The issue was resolved without having to wait for an official patch.
25.1 xpdf (4.05) Needs Triage
24.4 xpdf (4.05) Needs Triage
24.4.0 xpdf (4.05) Needs Triage
24.3 xpdf (4.05) Needs Triage
24.2.1 xpdf (4.05) Needs Triage
24.2 xpdf (4.05) Needs Triage
24.1 xpdf (3.02) Needs Triage
23.3 xpdf (3.02) Needs Triage
23.2.1 xpdf (3.02) Needs Triage
23.2 xpdf (3.02) Needs Triage
23.1 xpdf (3.02) Needs Triage

Severity score breakdown

References