Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-0147HistoryApr 23, 2009 - 5:30 p.m.
CVE-2009-0147
2009-04-2317:30:01
Debian Security Bug Tracker
security-tracker.debian.org
17
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.021 Low
EPSS
Percentile
89.2%
Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2Stream::readSymbolDictSeg, (2) JBIG2Stream::readSymbolDictSeg, and (3) JBIG2Stream::readGenericBitmap.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | cups | <Β 2.4.2-3+deb12u5 | cups_2.4.2-3+deb12u5_all.deb |
| Debian | 11 | all | cups | <Β 2.3.3op2-3+deb11u6 | cups_2.3.3op2-3+deb11u6_all.deb |
| Debian | 999 | all | cups | <Β 2.4.10-1 | cups_2.4.10-1_all.deb |
| Debian | 13 | all | cups | <Β 2.4.10-1 | cups_2.4.10-1_all.deb |
| Debian | 12 | all | poppler | <Β 0.10.6-1 | poppler_0.10.6-1_all.deb |
| Debian | 11 | all | poppler | <Β 0.10.6-1 | poppler_0.10.6-1_all.deb |
| Debian | 999 | all | poppler | <Β 0.10.6-1 | poppler_0.10.6-1_all.deb |
| Debian | 13 | all | poppler | <Β 0.10.6-1 | poppler_0.10.6-1_all.deb |
| Debian | 12 | all | xpdf | <Β 3.02-1.4+lenny1 | xpdf_3.02-1.4+lenny1_all.deb |
| Debian | 11 | all | xpdf | <Β 3.02-1.4+lenny1 | xpdf_3.02-1.4+lenny1_all.deb |
Related
ubuntucve
ubuntucve
CVE-2009-0147
2009-04-23 00:00:00
CVE-2009-0166
2009-04-23 00:00:00
nvd
nvd
CVE-2009-0147
2009-04-23 17:30:01
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:32:00
cve
cve
CVE-2009-0147
2009-04-23 17:30:01
cvelist
cvelist
CVE-2009-0147
2009-04-23 17:00:00
prion
prion
Integer overflow
2009-04-23 17:30:00
nessus
nessus
Fedora 9 : cups-1.3.10-1.fc9 (2009-3753)
2009-04-22 00:00:00
Slackware 12.0 / 12.1 / 12.2 / current : cups (SSA:2009-116-01)
2009-04-27 00:00:00
openvas
openvas
FreeBSD Ports: cups-base
2009-05-11 00:00:00
Gentoo Security Advisory GLSA 200904-20 (cups)
2009-04-28 00:00:00
Slackware: Security Advisory (SSA:2009-116-01)
2012-09-10 00:00:00
gentoo
gentoo
CUPS: Multiple vulnerabilities
2009-04-23 00:00:00
freebsd
freebsd
cups -- remote code execution and DNS rebinding
2009-05-05 00:00:00
xpdf -- multiple vulnerabilities
2009-04-16 00:00:00
securityvulns
securityvulns
rPSA-2009-0061-1 cups
2009-04-18 00:00:00
CUPS multipls security vulnerabilities
2009-04-18 00:00:00
Ghsotscript / XPDF / CUPS pdftops buffer overflow
2009-04-18 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: cups-1.3.10-1.fc10
2009-04-22 00:50:31
[SECURITY] Fedora 11 Update: poppler-0.10.7-2.fc11
2009-07-16 07:22:36
[SECURITY] Fedora 9 Update: xpdf-3.02-13.fc9
2009-04-22 00:53:44
altlinux
altlinux
Security fix for the ALT Linux 5 package kdegraphics version 3.5.10-alt1.1
2009-04-20 00:00:00
Security fix for the ALT Linux 5 package xpdf version 3.02-alt5
2009-04-22 00:00:00
centos
centos
kdegraphics security update
2009-04-17 13:27:27
xpdf security update
2009-04-17 12:50:58
cups security update
2009-04-17 13:26:01
osv
osv
xpdf - multiple vulnerabilities
2009-05-05 00:00:00
kdegraphics - multiple vulnerabilities
2009-05-06 00:00:00
oraclelinux
oraclelinux
xpdf security update
2009-04-16 00:00:00
kdegraphics security update
2009-04-16 00:00:00
gpdf security update
2009-04-30 00:00:00
redhat
redhat
(RHSA-2009:0430) Important: xpdf security update
2009-04-16 00:00:00
(RHSA-2009:0429) Important: cups security update
2009-04-16 00:00:00
(RHSA-2009:0431) Important: kdegraphics security update
2009-04-16 00:00:00
debian
debian
[SECURITY] [DSA 1790-1] New xpdf packages fix multiple vulnerabilities
2009-05-05 20:05:20
seebug
seebug
Xpdf JBIG2ε€ηε€δΈͺηΌε²εΊζΊ’εΊεζη»ζε‘ζΌζ΄
2009-04-18 00:00:00
ubuntu
ubuntu
poppler vulnerabilities
2009-04-16 00:00:00
KOffice vulnerabilities
2010-08-17 00:00:00
suse
suse
remote code execution in cups
2009-04-22 16:34:36
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.021 Low
EPSS
Percentile
89.2%
Related for DEBIANCVE:CVE-2009-0147