Lucene search

K
redhatRedHatRHSA-2002:307
HistoryFeb 06, 2003 - 12:00 a.m.

(RHSA-2002:307) xpdf security update

2003-02-0600:00:00
access.redhat.com
15

EPSS

0.001

Percentile

28.0%

Xpdf is an X Window System based viewer for Portable Document Format
(PDF) files.

During an audit of CUPS, a printing system, Zen Parsec found an integer
overflow vulnerability in the pdftops filter. Since the code for pdftops
is taken from the Xpdf project, all versions of Xpdf including 2.01 are
also vulnerable to this issue. An attacker could create a malicious PDF
file that would execute arbitrary code as the user who used Xpdf to view it.

All users of Xpdf are advised to upgrade to these errata packages which
contain a patch to correct this issue.

OSVersionArchitecturePackageVersionFilename
RedHatanyia64xpdf< 0.92-8xpdf-0.92-8.ia64.rpm
RedHatanyi386xpdf< 0.92-8xpdf-0.92-8.i386.rpm