LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

xpdf: heap overflows

Package(s):xpdf gpdf kpdf poppler CVE #(s):CVE-2005-3624 CVE-2005-3625 CVE-2005-3626 CVE-2005-3627
Created:January 11, 2006 Updated:March 10, 2006
Description: Xpdf, the associated poppler library, and other applications using that library are susceptible to a new set of buffer overflows discovered by Chris Evans and infamous41md. These overflows could be exploited, via a malicious PDF file, to execute arbitrary code on the target system.
Alerts:
Fedora-Legacy FLSA:176751 2006-03-07
Mandriva MDKSA-2006:030 2006-02-02
Debian DSA-962-1 2006-02-01
Debian DSA-961-1 2006-02-01
Gentoo 200601-17 2006-01-30
Debian-Testing DTSA-28-1 2005-01-25
Debian DSA-950-1 2006-01-23
Trustix TSLSA-2006-0002 2006-01-13
Debian DSA-940-1 2006-01-13
Mandriva MDKSA-2006:012 2006-01-12
Fedora FEDORA-2005-028 2006-01-12
Fedora FEDORA-2005-029 2006-01-12
Debian DSA-938-1 2006-01-12
Debian DSA-937-1 2006-01-12
SuSE SUSE-SA:2006:001 2006-01-11
Red Hat RHSA-2006:0177-01 2006-01-11
Red Hat RHSA-2006:0163-01 2006-01-11
Mandriva MDKSA-2006:011 2006-01-10
Mandriva MDKSA-2006:010 2006-01-10
Debian DSA-936-1 2006-01-11
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds