Aggregates CVE and security vulnerability intelligence across all pdfresurrect_project-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk memory corruption and vendor risk buffer overflow and related problems; some flaws may lead to vendor impact memory corruption and vendor impact application crash.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2021-3508 | A flaw was found in PDFResurrect in version 0.22b. There is an infinite loop in get_xref_linear_skipped() in pdf.c via a crafted PDF file. | [email protected] | 5.5 | 0.76% | 2021-04-28 | 2026-06-17 |
| CVE-2020-20740 | PDFResurrect before 0.20 lack of header validation checks causes heap-buffer-overflow in pdf_get_version(). | [email protected] | 7.8 | 1.05% | 2020-11-20 | 2026-06-16 |
| CVE-2020-9549 | In PDFResurrect 0.12 through 0.19, get_type in pdf.c has an out-of-bounds write via a crafted PDF document. | [email protected] | 7.8 | 1.34% | 2020-03-02 | 2026-06-16 |
| CVE-2019-14934 | An issue was discovered in PDFResurrect before 0.18. pdf_load_pages_kids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write. | [email protected] | 7.8 | 1.12% | 2019-08-11 | 2026-06-16 |
| CVE-2019-14267 | PDFResurrect 0.15 has a buffer overflow via a crafted PDF file because data associated with startxref and %%EOF is mishandled. | [email protected] | 7.8 | 7.08% | 2019-07-29 | 2026-06-16 |