Oval Definition:oval:com.redhat.rhsa:def:20100751
Revision Date:2010-10-07Version:637
Title:RHSA-2010:0751: xpdf security update (Important)
Description:Xpdf is an X Window System based viewer for Portable Document Format (PDF) files.

  • An uninitialized pointer use flaw was discovered in Xpdf. An attacker could create a malicious PDF file that, when opened, would cause Xpdf to crash or, potentially, execute arbitrary code. (CVE-2010-3702)

  • An array index error was found in the way Xpdf parsed PostScript Type 1 fonts embedded in PDF documents. An attacker could create a malicious PDF file that, when opened, would cause Xpdf to crash or, potentially, execute arbitrary code. (CVE-2010-3704)

    Users are advised to upgrade to this updated package, which contains backported patches to correct these issues.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2010-3702
    CVE-2010-3704
    RHSA-2010:0751
    RHSA-2010:0751-01
    RHSA-2010:0751-01
    Platform(s):Red Hat Enterprise Linux 4
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND xpdf is earlier than 1:3.00-24.el4_8.1
  • AND xpdf is signed with Red Hat redhatrelease2 key
    • BACK