Oval Definition:	oval:org.mitre.oval:def:7864
Revision Date: 2015-02-23 Version: 20 Title: DSA-1793 kdegraphics -- multiple vulnerabilities Description: kpdf, a Portable Document Format (PDF) viewer for KDE, is based on the xpdf program and thus suffers from similar flaws to those described in DSA-1790. The Common Vulnerabilities and Exposures project identifies the following problems: Multiple buffer overflows in the JBIG2 decoder in kpdf allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2SymbolDict::setBitmap and (2) JBIG2Stream::readSymbolDictSeg. Multiple integer overflows in the JBIG2 decoder in kpdf allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2Stream::readSymbolDictSeg, (2) JBIG2Stream::readSymbolDictSeg, and (3) JBIG2Stream::readGenericBitmap. Integer overflow in the JBIG2 decoder in kpdf has unspecified impact related to "g*allocn." The JBIG2 decoder in kpdf allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers a free of uninitialised memory. The JBIG2 decoder in kpdf allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers an out-of-bounds read. Multiple "input validation flaws" in the JBIG2 decoder in kpdf allow remote attackers to execute arbitrary code via a crafted PDF file. Integer overflow in the JBIG2 decoder in kpdf allows remote attackers to execute arbitrary code via a crafted PDF file. The JBIG2 decoder in kpdf allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a free of invalid data. The JBIG2 decoder in kpdf allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers a NULL pointer dereference. Multiple buffer overflows in the JBIG2 MMR decoder in kpdf allow remote attackers to execute arbitrary code via a crafted PDF file. The JBIG2 MMR decoder in kpdf allows remote attackers to cause a denial of service (infinite loop and hang) via a crafted PDF file. The old stable distribution (etch), these problems have been fixed in version 4:3.5.5-3etch3. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2009-0146 CVE-2009-0147 CVE-2009-0165 CVE-2009-0166 CVE-2009-0799 CVE-2009-0800 CVE-2009-1179 CVE-2009-1180 CVE-2009-1181 CVE-2009-1182 CVE-2009-1183 DSA-1793 Platform(s): Debian GNU/Linux 4.0 Debian GNU/Linux 5.0 Product(s): kdegraphics Definition Synopsis Release section Debian GNU/Linux 5.0 is installed AND Architecture section Architecture independent section Installed architecture is all AND Packages section kdegraphics is earlier than 4:3.5.9-3+lenny1 OR kdegraphics-doc-html is earlier than 4:3.5.9-3+lenny1 OR Architecture dependent section Supported architectures section Installed architecture is s390 OR Installed architecture is amd64 OR Installed architecture is sparc OR Installed architecture is arm OR Installed architecture is i386 OR Installed architecture is armel OR Installed architecture is mips OR Installed architecture is ia64 OR Installed architecture is alpha OR Installed architecture is powerpc OR Installed architecture is mipsel OR Installed architecture is hppa AND Packages section kdegraphics-kfile-plugins is earlier than 4:3.5.9-3+lenny1 OR ksvg is earlier than 4:3.5.9-3+lenny1 OR libkscan-dev is earlier than 4:3.5.9-3+lenny1 OR kgamma is earlier than 4:3.5.9-3+lenny1 OR libkscan1 is earlier than 4:3.5.9-3+lenny1 OR kpovmodeler is earlier than 4:3.5.9-3+lenny1 OR kooka is earlier than 4:3.5.9-3+lenny1 OR kdegraphics-dev is earlier than 4:3.5.9-3+lenny1 OR kghostview is earlier than 4:3.5.9-3+lenny1 OR kfaxview is earlier than 4:3.5.9-3+lenny1 OR kviewshell is earlier than 4:3.5.9-3+lenny1 OR kview is earlier than 4:3.5.9-3+lenny1 OR kfax is earlier than 4:3.5.9-3+lenny1 OR ksnapshot is earlier than 4:3.5.9-3+lenny1 OR kmrml is earlier than 4:3.5.9-3+lenny1 OR kpdf is earlier than 4:3.5.9-3+lenny1 OR kcoloredit is earlier than 4:3.5.9-3+lenny1 OR kiconedit is earlier than 4:3.5.9-3+lenny1 OR kruler is earlier than 4:3.5.9-3+lenny1 OR kuickshow is earlier than 4:3.5.9-3+lenny1 OR kdvi is earlier than 4:3.5.9-3+lenny1 OR kdegraphics-dbg is earlier than 4:3.5.9-3+lenny1 OR kolourpaint is earlier than 4:3.5.9-3+lenny1 OR kamera is earlier than 4:3.5.9-3+lenny1 OR Release section Debian GNU/Linux 4.0 is installed. AND Architecture section Architecture independent section Installed architecture is all AND Packages section kdegraphics is earlier than 4:3.5.5-3etch3 OR kdegraphics-doc-html is earlier than 4:3.5.5-3etch3 OR Architecture dependent section Supported architectures section Installed architecture is s390 OR Installed architecture is amd64 OR Installed architecture is sparc OR Installed architecture is powerpc OR Installed architecture is i386 OR Installed architecture is mips OR Installed architecture is ia64 OR Installed architecture is alpha OR Installed architecture is mipsel OR Installed architecture is hppa AND Packages section kdegraphics-kfile-plugins is earlier than 4:3.5.5-3etch3 OR ksvg is earlier than 4:3.5.5-3etch3 OR libkscan-dev is earlier than 4:3.5.5-3etch3 OR kgamma is earlier than 4:3.5.5-3etch3 OR libkscan1 is earlier than 4:3.5.5-3etch3 OR kpovmodeler is earlier than 4:3.5.5-3etch3 OR kooka is earlier than 4:3.5.5-3etch3 OR kdegraphics-dev is earlier than 4:3.5.5-3etch3 OR kghostview is earlier than 4:3.5.5-3etch3 OR kfaxview is earlier than 4:3.5.5-3etch3 OR kviewshell is earlier than 4:3.5.5-3etch3 OR kview is earlier than 4:3.5.5-3etch3 OR kfax is earlier than 4:3.5.5-3etch3 OR ksnapshot is earlier than 4:3.5.5-3etch3 OR kmrml is earlier than 4:3.5.5-3etch3 OR kpdf is earlier than 4:3.5.5-3etch3 OR kcoloredit is earlier than 4:3.5.5-3etch3 OR kiconedit is earlier than 4:3.5.5-3etch3 OR kruler is earlier than 4:3.5.5-3etch3 OR kuickshow is earlier than 4:3.5.5-3etch3 OR kdvi is earlier than 4:3.5.5-3etch3 OR kdegraphics-dbg is earlier than 4:3.5.5-3etch3 OR kolourpaint is earlier than 4:3.5.5-3etch3 OR kamera is earlier than 4:3.5.5-3etch3
BACK