CVE-2022-33108 (https://forum.xpdfreader.com/viewtopic.php?f=3&t=42284): https://forum.xpdfreader.com/viewtopic.php?f=3&t=42286 https://forum.xpdfreader.com/viewtopic.php?f=3&t=42287 XPDF v4.04 was discovered to contain a stack overflow vulnerability via the Object::Copy class of object.cc files. "That's due to an object loop in the PDF file. I'm planning to implement a more robust loop checker in Xpdf 5."
CVE-2022-38334 (https://forum.xpdfreader.com/viewtopic.php?f=3&t=42314&p=43872): XPDF v4.04 was discovered to contain a stack overflow via the function Catalog::countPageTree() at Catalog.cc. Smells a lot like a duplicate, but very hard to tell with xpdf.
CVE-2022-41842 (http://www.xpdfreader.com/download.html): https://forum.xpdfreader.com/viewtopic.php?f=1&t=42340&p=43928&hilit=gfseek#p43928 An issue was discovered in Xpdf 4.04. There is a crash in gfseek(_IO_FILE*, long, int) in goo/gfile.cc. CVE-2022-41844 (http://www.xpdfreader.com/download.html): https://forum.xpdfreader.com/viewtopic.php?f=1&t=42340&p=43928&hilit=gfseek#p43928 https://forum.xpdfreader.com/viewtopic.php?f=3&t=42308&p=43844&hilit=XRef%3A%3Afetch#p43844 An issue was discovered in Xpdf 4.04. There is a crash in XRef::fetch(int, int, Object*, int) in xpdf/XRef.cc, a different vulnerability than CVE-2018-16369 and CVE-2019-16088. Most of these smell like duplicates, really. "All three of those are loops in the PDF object structure. I'm working on a more robust loop detector for Xpdf 5."
CVE-2022-43071 (https://forum.xpdfreader.com/viewtopic.php?f=3&t=42349&p=43959#p43959): A stack overflow in the Catalog::readPageLabelTree2(Object*) function of XPDF v4.04 allows attackers to cause a Denial of Service (DoS) via a crafted PDF file. CVE-2022-43295 (https://forum.xpdfreader.com/viewtopic.php?t=42360): XPDF v4.04 was discovered to contain a stack overflow via the function FileStream::copy() at xpdf/Stream.cc:795. As always, "I'm working on a more robust loop detector for Xpdf 5."
