12 matches found
Debian DSA-1941-1 : poppler - several vulnerabilities
Several integer overflows, buffer overflows and memory allocation errors were discovered in the Poppler PDF rendering library, which may lead to denial of service or the execution of arbitrary code if a user is tricked into opening a malformed PDF document. An update for the old stable distributi...
openSUSE Security Update : libpoppler-devel (libpoppler-devel-1735)
This update of libpoppler5 fixes various security issues. CVE-2009-0791: Fix multiple integer overflows in 'pdftops' filter that could be used by attackers to execute code. CVE-2009-3607: Integer overflow in the createsurfacefromthumbnaildata function in glib/poppler-page.cc in Poppler 0.x allows...
SuSE 11.2 Security Update: libpoppler-devel (2009-12-22)
This update of libpoppler5 fixes various security issues. CVE-2009-0791: Fix multiple integer overflows in 'pdftops' filter that could be used by attackers to execute code. CVE-2009-3607: Integer overflow in the createsurfacefromthumbnaildata function in glib/poppler-page.cc in Poppler 0.x allows...
Security fix for the ALT Linux 5 package poppler5 version 0.12.2-alt1
Dec. 11, 2009 Sergey V Turchin 0.12.2-alt1 - new version - CVE-2009-3607...
Debian Security Advisory DSA 1941-1 (poppler)
The remote host is missing an update to poppler announced via advisory DSA 1941-1. OpenVAS Vulnerability Test $Id: deb19411.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1941-1 poppler Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
Fedora Core 11 FEDORA-2009-10845 (poppler)
The remote host is missing an update to poppler announced via advisory FEDORA-2009-10845. OpenVAS Vulnerability Test $Id: fcore200910845.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-10845 poppler Authors: Thomas Reinke Copyright: Copyright c 2009...
Fedora Core 10 FEDORA-2009-10823 (poppler)
The remote host is missing an update to poppler announced via advisory FEDORA-2009-10823. OpenVAS Vulnerability Test $Id: fcore200910823.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-10823 poppler Authors: Thomas Reinke Copyright: Copyright c 2009...
Fedora Core 10 FEDORA-2009-10823 (poppler)
The remote host is missing an update to poppler announced via advisory FEDORA-2009-10823. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...
Fedora Core 11 FEDORA-2009-10845 (poppler)
The remote host is missing an update to poppler announced via advisory FEDORA-2009-10845. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...
Fedora 11 : poppler-0.10.7-3.fc11 (2009-10845)
This build addresses several recent security issues. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
CVE-2009-3607
CVE-2009-3607 affects Poppler (0.x) via an integer overflow in create_surface_from_thumbnail_data in glib/poppler-page.cc, leading to a heap-based buffer overflow and potential memory corruption that could allow arbitrary code execution when processing crafted PDFs. Various advisories (e.g., GLSA...
Poppler 'create_surface_from_thumbnail_data()'整数溢出漏洞
Bugraq ID: 36718 CVE ID:CVE-2009-3607 Poppler是一款用来生成PDF 的C++类库,从xpdf继承而来。 Poppler createsurfacefromthumbnaildata函数存在整数溢出,cairopixels缓冲区分配如下: cairopixels = guchar gmalloc 4 width height; 其中width / height值从PDF文件中读取,Page::loadThumb函数对值进行了一些验证,但是不能充分的防止溢出: if width INTMAX / 3 / height Poppler poppler...