Oval Definition:	oval:org.mitre.oval:def:22959
Revision Date: 2014-05-26 Version: 24 Title: ELSA-2009:1504: poppler security and bug fix update (Important) Description: Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2009-3603 CVE-2009-3608 CVE-2009-3609 ELSA-2009:1504-01 Platform(s): Oracle Linux 5 Product(s): poppler Definition Synopsis Oracle Linux 5.x AND rpm test poppler-utils is earlier than 0:0.5.4-4.4.el5_4.11 OR poppler is earlier than 0:0.5.4-4.4.el5_4.11 OR poppler-devel is earlier than 0:0.5.4-4.4.el5_4.11
BACK