Create an account

Subscribe to LWN

Pencil, Pencil, and Pencil

Dividing the Linux desktop

LWN.net Weekly Edition for June 13, 2013

A report from pgCon 2013

Little things that matter in language design

Weekly edition	Kernel	Security	Distributions	Contact Us	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ	Sponsors

poppler: integer overflow

Package(s):

poppler

CVE #(s):

CVE-2009-3607

Created:

October 21, 2009

Updated:

March 5, 2010

Description:

From the Red Hat bugzilla entry:

Ludwig Nussel reported an integer overflow in poppler's create_surface_from_thumbnail_data() function.

Alerts:

Mandriva	MDVSA-2011:175	2011-11-15
Mandriva	MDVSA-2010:055	2010-03-04
SuSE	SUSE-SR:2009:020	2010-01-12
Ubuntu	USN-850-3	2009-11-02
Fedora	FEDORA-2009-10845	2009-10-27
Fedora	FEDORA-2009-10823	2009-10-27
Ubuntu	USN-850-1	2009-10-21

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds