Oval Definition:	oval:org.opensuse.security:def:20093605
Revision Date: 2017-09-27 Version: 1 Title: CVE-2009-3605 Description: Multiple integer overflows in Poppler 0.10.5 and earlier allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file, related to (1) glib/poppler-page.cc; (2) ArthurOutputDev.cc, (3) CairoOutputDev.cc, (4) GfxState.cc, (5) JBIG2Stream.cc, (6) PSOutputDev.cc, and (7) SplashOutputDev.cc in poppler/; and (8) SplashBitmap.cc, (9) Splash.cc, and (10) SplashFTFont.cc in splash/. NOTE: this may overlap CVE-2009-0791. Family: unix Class: vulnerability Status: Reference(s): CVE-2009-3605 Platform(s): openSUSE 10.3 openSUSE 11.0 openSUSE 11.1 SLES SDK 9 for IBM iSeries and IBM pSeries SLES SDK 9 for IBM S/390 and IBM zSeries SLES SDK 9 for IBM zSeries SLES SDK 9 for IPF SLES SDK 9 for x86 SLES SDK 9 for X86-64 SUSE Linux Enterprise Desktop 10 SP3 for AMD64 and Intel EM64T SUSE Linux Enterprise Desktop 10 SP3 for x86 SUSE Linux Enterprise SDK 10 SP2 SUSE Linux Enterprise SDK 10 SP3 SUSE Linux Enterprise Server 10 SP3 Product(s): Definition Synopsis Release Information sles10-sp2-sdk is installed AND xpdf less than 3.01-21.22.2 OR Package Information sles10-sp3 is installed AND xpdf-tools less than 3.01-21.23.2 OR sles10-sp3-sdk is installed AND xpdf less than 3.01-21.23.2
BACK