Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-3606HistoryOct 21, 2009 - 5:30 p.m.
CVE-2009-3606
2009-10-2117:30:00
Debian Security Bug Tracker
security-tracker.debian.org
8
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.081 Low
EPSS
Percentile
94.3%
Integer overflow in the PSOutputDev::doImageL1Sep function in Xpdf before 3.02pl4, and Poppler 0.x, as used in kdegraphics KPDF, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | poppler | < 0.12.2-1 | poppler_0.12.2-1_all.deb |
| Debian | 11 | all | poppler | < 0.12.2-1 | poppler_0.12.2-1_all.deb |
| Debian | 10 | all | poppler | < 0.12.2-1 | poppler_0.12.2-1_all.deb |
| Debian | 999 | all | poppler | < 0.12.2-1 | poppler_0.12.2-1_all.deb |
| Debian | 13 | all | poppler | < 0.12.2-1 | poppler_0.12.2-1_all.deb |
| Debian | 12 | all | xpdf | < 3.02-2 | xpdf_3.02-2_all.deb |
| Debian | 11 | all | xpdf | < 3.02-2 | xpdf_3.02-2_all.deb |
| Debian | 10 | all | xpdf | < 3.02-2 | xpdf_3.02-2_all.deb |
| Debian | 999 | all | xpdf | < 3.02-2 | xpdf_3.02-2_all.deb |
| Debian | 13 | all | xpdf | < 3.02-2 | xpdf_3.02-2_all.deb |
Related
cve
cve
CVE-2009-3606
2009-10-21 17:30:00
CVE-2009-3906
2009-12-12 02:30:00
prion
prion
Integer overflow
2009-10-21 17:30:00
nessus
nessus
Mandriva Linux Security Advisory : koffice (MDVSA-2009:336)
2009-12-21 00:00:00
CentOS 3 : xpdf (CESA-2009:1500)
2009-10-16 00:00:00
Oracle Linux 3 : xpdf (ELSA-2009-1500)
2013-07-12 00:00:00
openvas
openvas
Mandriva Security Advisory MDVSA-2009:336 (koffice)
2009-12-30 00:00:00
Mandriva Security Advisory MDVSA-2009:336 (koffice)
2009-12-30 00:00:00
CentOS Update for xpdf CESA-2009:1500 centos3 i386
2011-08-09 00:00:00
ubuntucve
ubuntucve
CVE-2009-3606
2009-10-21 00:00:00
redhat
redhat
(RHSA-2009:1500) Important: xpdf security update
2009-10-15 00:00:00
(RHSA-2009:1501) Important: xpdf security update
2009-10-15 00:00:00
(RHSA-2009:1502) Important: kdegraphics security update
2009-10-15 00:00:00
centos
centos
xpdf security update
2009-10-15 11:03:48
xpdf security update
2009-10-16 13:29:40
kdegraphics security update
2009-10-30 14:43:50
securityvulns
securityvulns
CUPS / poppler / xpdf / Adobe Reader multipls security vulnerabilities
2009-10-28 00:00:00
oraclelinux
oraclelinux
xpdf security update
2009-10-15 00:00:00
gpdf security update
2009-04-30 00:00:00
poppler security update
2009-05-13 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: poppler-0.8.7-7.fc10
2009-10-27 07:05:29
[SECURITY] Fedora 12 Update: pdfedit-0.4.3-4.fc12
2010-02-20 00:25:46
[SECURITY] Fedora 11 Update: poppler-0.10.7-3.fc11
2009-10-27 07:15:39
debian
debian
[SECURITY] [DSA 2028-1] New xpdf packages fix several vulnerabilities
2010-04-05 15:24:30
[SECURITY] [DSA 2050-1] New kdegraphics packages fix several vulnerabilities
2010-05-24 15:38:55
altlinux
altlinux
Security fix for the ALT Linux 5 package xpdf version 3.02-alt7
2009-11-15 00:00:00
osv
osv
xpdf - several vulnerabilities
2010-04-05 00:00:00
kdegraphics - several vulnerabilities
2010-05-24 00:00:00
ubuntu
ubuntu
KOffice vulnerabilities
2010-08-17 00:00:00
gentoo
gentoo
Poppler: Multiple vulnerabilities
2013-10-06 00:00:00
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.081 Low
EPSS
Percentile
94.3%
Related for DEBIANCVE:CVE-2009-3606