Oval Definition:oval:org.mitre.oval:def:22318
Revision Date:2014-02-24Version:44
Title:RHSA-2010:0859: poppler security update (Important)
Description:The FoFiType1::parse function in fofi/FoFiType1.cc in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a PDF file with a crafted PostScript Type1 font that contains a negative array index, which bypasses input validation and triggers memory corruption.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2010-3702
CVE-2010-3703
CVE-2010-3704
RHSA-2010:0859-03
Platform(s):Red Hat Enterprise Linux 6
Product(s):poppler
Definition Synopsis
  • The operating system installed on the system is Red Hat Enterprise Linux 6
  • AND Packages section
  • poppler-qt4 is earlier than 0:0.12.4-3.el6_0.1
  • OR poppler-devel is earlier than 0:0.12.4-3.el6_0.1
  • OR poppler-qt-devel is earlier than 0:0.12.4-3.el6_0.1
  • OR poppler-glib-devel is earlier than 0:0.12.4-3.el6_0.1
  • OR poppler-qt4-devel is earlier than 0:0.12.4-3.el6_0.1
  • OR poppler-qt is earlier than 0:0.12.4-3.el6_0.1
  • OR poppler-glib is earlier than 0:0.12.4-3.el6_0.1
  • OR poppler-utils is earlier than 0:0.12.4-3.el6_0.1
  • OR poppler is earlier than 0:0.12.4-3.el6_0.1
    • BACK