Oval Definition:	oval:org.mitre.oval:def:22899
Revision Date: 2014-05-26 Version: 20 Title: ELSA-2009:1513: cups security update (Moderate) Description: Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2009-3608 CVE-2009-3609 ELSA-2009:1513-01 Platform(s): Oracle Linux 5 Product(s): cups Definition Synopsis Oracle Linux 5.x AND rpm test cups-lpd is earlier than 1:1.3.7-11.el5_4.3 OR cups-devel is earlier than 1:1.3.7-11.el5_4.3 OR cups-libs is earlier than 1:1.3.7-11.el5_4.3 OR cups is earlier than 1:1.3.7-11.el5_4.3
BACK