RedHatRHSA-2009:1503(RHSA-2009:1503) Important: gpdf security update
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.459 Medium
EPSS
Percentile
97.0%
GPdf is a viewer for Portable Document Format (PDF) files.
Multiple integer overflow flaws were found in GPdf. An attacker could
create a malicious PDF file that would cause GPdf to crash or, potentially,
execute arbitrary code when opened. (CVE-2009-0791, CVE-2009-1188,
CVE-2009-3604, CVE-2009-3608, CVE-2009-3609)
Red Hat would like to thank Adam Zabrocki for reporting the CVE-2009-3604
issue, and Chris Rohlf for reporting the CVE-2009-3608 issue.
Users are advised to upgrade to this updated package, which contains a
backported patch to correct these issues.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 4 | i386 | gpdf | < 2.8.2-7.7.2.el4_8.5 | gpdf-2.8.2-7.7.2.el4_8.5.i386.rpm |
| RedHat | 4 | src | gpdf | < 2.8.2-7.7.2.el4_8.5 | gpdf-2.8.2-7.7.2.el4_8.5.src.rpm |
| RedHat | 4 | s390x | gpdf | < 2.8.2-7.7.2.el4_8.5 | gpdf-2.8.2-7.7.2.el4_8.5.s390x.rpm |
| RedHat | 4 | s390 | gpdf | < 2.8.2-7.7.2.el4_8.5 | gpdf-2.8.2-7.7.2.el4_8.5.s390.rpm |
| RedHat | 4 | ia64 | gpdf | < 2.8.2-7.7.2.el4_8.5 | gpdf-2.8.2-7.7.2.el4_8.5.ia64.rpm |
| RedHat | 4 | x86_64 | gpdf | < 2.8.2-7.7.2.el4_8.5 | gpdf-2.8.2-7.7.2.el4_8.5.x86_64.rpm |
| RedHat | 4 | ppc | gpdf | < 2.8.2-7.7.2.el4_8.5 | gpdf-2.8.2-7.7.2.el4_8.5.ppc.rpm |
Related
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.459 Medium
EPSS
Percentile
97.0%