Nixpkgs Security Tracker

Untriaged

Permalink CVE-2026-4407

created 4 days, 11 hours ago

Out-of-bounds array write in Xpdf 4.06 due to missing validation

Out-of-bounds array write in Xpdf 4.06 and earlier, due to incorrect validation of the "N" field in ICCBased color spaces.

References

https://www.xpdfreader.com/security-bug/CVE-2026-4407.html

Affected products

Xpdf

==4.06

Matching in nixpkgs

pkgs.xpdf

Viewer for Portable Document Format (PDF) files

nixos-unstable 4.06
- nixpkgs-unstable 4.06
- nixos-unstable-small 4.06
nixos-25.11 4.06
- nixos-25.11-small 4.06
- nixpkgs-25.11-darwin 4.06

pkgs.libxpdf

None

nixos-unstable 3.02pl5
- nixpkgs-unstable 3.02pl5
- nixos-unstable-small 3.02pl5
nixos-25.11 3.02pl5
- nixos-25.11-small 3.02pl5
- nixpkgs-25.11-darwin 3.02pl5

Package maintainers

@sikmir Nikolay Korotkiy <sikmir@disroot.org>

Untriaged

Permalink CVE-2010-0206

created 1 month ago

xpdf allows remote attackers to cause a denial of service …

xpdf allows remote attackers to cause a denial of service (NULL pointer dereference and crash) in the way it processes JBIG2 PDF stream objects.

References

https://security-tracker.debian.org/tracker/CVE-2010-0206 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-0206 x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2010-0206 x_transferred x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-0206 x_transferred x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-0206 x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2010-0206 x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2010-0206 x_transferred x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-0206 x_transferred x_refsource_MISC

Affected products

xpdf

==N/A

Matching in nixpkgs

pkgs.xpdf

Viewer for Portable Document Format (PDF) files

nixos-unstable 4.06
- nixpkgs-unstable 4.06
- nixos-unstable-small 4.06
nixos-25.11 4.06
- nixos-25.11-small 4.06
- nixpkgs-25.11-darwin 4.06

pkgs.libxpdf

None

nixos-unstable 3.02pl5
- nixpkgs-unstable 3.02pl5
- nixos-unstable-small 3.02pl5
nixos-25.11 3.02pl5
- nixos-25.11-small 3.02pl5
- nixpkgs-25.11-darwin 3.02pl5

Package maintainers

@sikmir Nikolay Korotkiy <sikmir@disroot.org>

Suggestions search

References

Affected products

Matching in nixpkgs

pkgs.xpdf

pkgs.libxpdf

Package maintainers

References

Affected products

Matching in nixpkgs

pkgs.xpdf

pkgs.libxpdf

Package maintainers