(RHSA-2010:0751) Important: xpdf security update

2010-10-07T04:00:00
ID RHSA-2010:0751
Type redhat
Reporter RedHat
Modified 2017-09-08T12:14:20

Description

Xpdf is an X Window System based viewer for Portable Document Format (PDF) files.

An uninitialized pointer use flaw was discovered in Xpdf. An attacker could create a malicious PDF file that, when opened, would cause Xpdf to crash or, potentially, execute arbitrary code. (CVE-2010-3702)

An array index error was found in the way Xpdf parsed PostScript Type 1 fonts embedded in PDF documents. An attacker could create a malicious PDF file that, when opened, would cause Xpdf to crash or, potentially, execute arbitrary code. (CVE-2010-3704)

Users are advised to upgrade to this updated package, which contains backported patches to correct these issues.