Oval Definition:	oval:org.opensuse.security:def:20093604
Revision Date: 2017-09-27 Version: 1 Title: CVE-2009-3604 Description: The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document that triggers a NULL pointer dereference or a heap-based buffer overflow. Family: unix Class: vulnerability Status: Reference(s): CVE-2009-3604 Platform(s): openSUSE 10.3 openSUSE 11.0 openSUSE 11.1 SLES SDK 9 for IBM iSeries and IBM pSeries SLES SDK 9 for IBM S/390 and IBM zSeries SLES SDK 9 for IBM zSeries SLES SDK 9 for IPF SLES SDK 9 for x86 SLES SDK 9 for X86-64 SUSE Linux Enterprise Desktop 10 SP3 for AMD64 and Intel EM64T SUSE Linux Enterprise Desktop 10 SP3 for x86 SUSE Linux Enterprise SDK 10 SP2 SUSE Linux Enterprise SDK 10 SP3 SUSE Linux Enterprise Server 10 SP3 Product(s): Definition Synopsis Release Information sles10-sp2-sdk is installed AND xpdf less than 3.01-21.22.2 OR Package Information sles10-sp3 is installed AND xpdf-tools less than 3.01-21.23.2 OR sles10-sp3-sdk is installed AND xpdf less than 3.01-21.23.2
BACK