Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-0146HistoryApr 23, 2009 - 5:30 p.m.
CVE-2009-0146
2009-04-2317:30:00
Debian Security Bug Tracker
security-tracker.debian.org
19
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.028 Low
EPSS
Percentile
90.5%
Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2SymbolDict::setBitmap and (2) JBIG2Stream::readSymbolDictSeg.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | cups | <Β 2.4.2-3+deb12u5 | cups_2.4.2-3+deb12u5_all.deb |
| Debian | 11 | all | cups | <Β 2.3.3op2-3+deb11u6 | cups_2.3.3op2-3+deb11u6_all.deb |
| Debian | 10 | all | cups | <Β 2.2.10-6+deb10u6 | cups_2.2.10-6+deb10u6_all.deb |
| Debian | 999 | all | cups | <Β 2.4.7-1.2 | cups_2.4.7-1.2_all.deb |
| Debian | 13 | all | cups | <Β 2.4.7-1.2 | cups_2.4.7-1.2_all.deb |
| Debian | 12 | all | poppler | <Β 0.10.6-1 | poppler_0.10.6-1_all.deb |
| Debian | 11 | all | poppler | <Β 0.10.6-1 | poppler_0.10.6-1_all.deb |
| Debian | 10 | all | poppler | <Β 0.10.6-1 | poppler_0.10.6-1_all.deb |
| Debian | 999 | all | poppler | <Β 0.10.6-1 | poppler_0.10.6-1_all.deb |
| Debian | 13 | all | poppler | <Β 0.10.6-1 | poppler_0.10.6-1_all.deb |
Related
cve
cve
CVE-2009-0146
2009-04-23 17:30:00
prion
prion
Buffer overflow
2009-04-23 17:30:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:32:00
ubuntucve
ubuntucve
nessus
nessus
Slackware 12.0 / 12.1 / 12.2 / current : cups (SSA:2009-116-01)
2009-04-27 00:00:00
FreeBSD : cups -- remote code execution and DNS rebinding (736e55bc-39bb-11de-a493-001b77d09812)
2009-05-08 00:00:00
GLSA-200904-20 : CUPS: Multiple vulnerabilities
2009-04-27 00:00:00
openvas
openvas
FreeBSD Ports: cups-base
2009-05-11 00:00:00
Gentoo Security Advisory GLSA 200904-20 (cups)
2009-04-28 00:00:00
Gentoo Security Advisory GLSA 200904-20 (cups)
2009-04-28 00:00:00
gentoo
gentoo
CUPS: Multiple vulnerabilities
2009-04-23 00:00:00
freebsd
freebsd
cups -- remote code execution and DNS rebinding
2009-05-05 00:00:00
xpdf -- multiple vulnerabilities
2009-04-16 00:00:00
securityvulns
securityvulns
rPSA-2009-0061-1 cups
2009-04-18 00:00:00
CUPS multipls security vulnerabilities
2009-04-18 00:00:00
Ghsotscript / XPDF / CUPS pdftops buffer overflow
2009-04-18 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: cups-1.3.10-1.fc10
2009-04-22 00:50:31
[SECURITY] Fedora 11 Update: poppler-0.10.7-2.fc11
2009-07-16 07:22:36
[SECURITY] Fedora 10 Update: poppler-0.8.7-6.fc10
2009-06-27 02:43:50
altlinux
altlinux
Security fix for the ALT Linux 5 package kdegraphics version 3.5.10-alt1.1
2009-04-20 00:00:00
Security fix for the ALT Linux 5 package xpdf version 3.02-alt5
2009-04-22 00:00:00
oraclelinux
oraclelinux
xpdf security update
2009-04-16 00:00:00
kdegraphics security update
2009-04-16 00:00:00
gpdf security update
2009-04-30 00:00:00
osv
osv
xpdf - multiple vulnerabilities
2009-05-05 00:00:00
kdegraphics - multiple vulnerabilities
2009-05-06 00:00:00
debian
debian
[SECURITY] [DSA 1790-1] New xpdf packages fix multiple vulnerabilities
2009-05-05 20:05:20
redhat
redhat
(RHSA-2009:0431) Important: kdegraphics security update
2009-04-16 00:00:00
(RHSA-2009:0430) Important: xpdf security update
2009-04-16 00:00:00
(RHSA-2009:0429) Important: cups security update
2009-04-16 00:00:00
centos
centos
kdegraphics security update
2009-04-17 13:27:27
xpdf security update
2009-04-17 12:50:58
gpdf security update
2009-05-03 12:25:03
seebug
seebug
Xpdf JBIG2ε€ηε€δΈͺηΌε²εΊζΊ’εΊεζη»ζε‘ζΌζ΄
2009-04-18 00:00:00
suse
suse
remote code execution in cups
2009-04-22 16:34:36
ubuntu
ubuntu
poppler vulnerabilities
2009-04-16 00:00:00
KOffice vulnerabilities
2010-08-17 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.028 Low
EPSS
Percentile
90.5%
Related for DEBIANCVE:CVE-2009-0146