KDE KPDF/KWord/XPDF StreamPredictor Function Stack Buffer Overflow Vulnerability

KDE KPDF/KWord/XPDF StreamPredictor Function Stack Buffer Overflow Vulnerability

KDE kpdf, kword, and xpdf are prone to a stack-based buffer-overflow vulnerability because the applications fail to bounds-check user-supplied data before copying it into an insufficiently sized buffer.

An attacker can exploit this issue to execute arbitrary code within the context of the affected application or cause the affected application to crash, denying service to legitimate users.