XPDF DCTStream Baseline Remote Heap Buffer Overflow Vulnerability

XPDF DCTStream Baseline Remote Heap Buffer Overflow Vulnerability

References:

ASA-2007-281 - Multiple Security Vulnerabilities in the Solaris Gnome PDF Viewer (Avaya)
Bug 313117: gpdf: DoS from XPDF issue (GNOME)
Debian Bug report logs - #342287 kpdf: source taken from xpdf may introduce heap (Debian)
Debian Bug report logs - #342289 xpdf security problems partially affect pdftoht (Debian)
Debian Bug report logs - #342292 tetex-bin: Multiple exploitable heap overflows (Debian)
Debian Bug report logs - #342294 koffice: Exploitable heap overflows in embedded (Debian)
Multiple Vendor xpdf DCTStream Baseline Heap Overflow Vulnerability (iDEFENSE)
Multiple Vendor xpdf DCTStream Progressive Heap Overflow (iDEFENSE)
Multiple Vendor xpdf JPX Stream Reader Heap Overflow Vulnerability (iDEFENSE)
Multiple Vendor xpdf StreamPredictor Heap Overflow Vulnerability (iDEFENSE)
RHSA-2005:840-10 - xpdf security update (RedHat)
RHSA-2005:840-5 - xpdf security update (RedHat)
RHSA-2005:867-5 - gpdf security update (RedHat)
RHSA-2005:868-4 - kdegraphics security update (RedHat)
RHSA-2005:878-4 - cups security update (RedHat)
RHSA-2006:0160-14 - tetex security update (RedHat)
Sun Alert ID: 102972 - Multiple Security Vulnerabilities in the Solaris Gnome PD (Sun)
TLSA-2006-2 - Multiple vulnerabilities exist in cups (TurboLinux)
Xpdf Homepage (Xpdf)
[DSA 950-1] New CUPS packages fix arbitrary code execution (joey@infodrom.org (Martin Schulze))

Privacy Statement
Copyright 2010, SecurityFocus