GLSA-200501-13 : pdftohtml: Vulnerabilities in included Xpdf

The remote host is affected by the vulnerability described in GLSA-200501-13 pdftohtml: Vulnerabilities in included Xpdf Xpdf is vulnerable to integer overflows, as described in GLSA 200412-24. Impact : An attacker could entice a user to convert a specially crafted PDF file, potentially resulting...

GLSA-200501-17 : KPdf, KOffice: More vulnerabilities in included Xpdf

The remote host is affected by the vulnerability described in GLSA-200501-17 KPdf, KOffice: More vulnerabilities in included Xpdf KPdf and KOffice both include Xpdf code to handle PDF files. Xpdf is vulnerable to multiple new integer overflows, as described in GLSA 200412-24. Impact : An attacker...

xli -- integer overflows in image size calculations

Tavis Ormandy discovered several integer overflows in xli's image size handling. A maliciously crafted image may be able to cause a heap buffer overflow and execute arbitrary code...

CVE-2004-0886

Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service crash or memory corruption via TIFF images that lead to incorrect malloc calls...

CVE-2004-0889

Multiple integer overflows in xpdf 3.0, and other packages that use xpdf code such as CUPS, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0888...

DEBIAN-CVE-2004-0886

Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service crash or memory corruption via TIFF images that lead to incorrect malloc calls...

CVE-2004-0886

Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service crash or memory corruption via TIFF images that lead to incorrect malloc calls...

CVE-2004-0889

Multiple integer overflows in xpdf 3.0, and other packages that use xpdf code such as CUPS, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0888...

KPdf, KOffice: More vulnerabilities in included Xpdf

Background KPdf is a KDE-based PDF viewer included in the kdegraphics package. KOffice is an integrated office suite for KDE. Description KPdf and KOffice both include Xpdf code to handle PDF files. Xpdf is vulnerable to multiple new integer overflows, as described in GLSA 200412-24. Impact An...

DEBIAN-CVE-2004-1026

Multiple integer overflows in the image handler for imlib 1.9.14 and earlier, which is used by gkrellm and several window managers, allow remote attackers to cause a denial of service application crash and execute arbitrary code via certain image files...

CVE-2004-0914

Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include 1 multiple integer overflows, 2 out-of-bounds memory accesses, 3 directory traversal, 4 shell metacharacter, 5 endless loops, and 6 memory leaks, which could allow remote attackers to obtain...

CVE-2004-1026

Multiple integer overflows in the image handler for imlib 1.9.14 and earlier, which is used by gkrellm and several window managers, allow remote attackers to cause a denial of service application crash and execute arbitrary code via certain image files...

CVE-2004-0914

Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include 1 multiple integer overflows, 2 out-of-bounds memory accesses, 3 directory traversal, 4 shell metacharacter, 5 endless loops, and 6 memory leaks, which could allow remote attackers to obtain...

pdftohtml: Vulnerabilities in included Xpdf

Background pdftohtml is a utility to convert PDF files to HTML or XML formats. It makes use of Xpdf code to decode PDF files. Description Xpdf is vulnerable to integer overflows, as described in GLSA 200412-24. Impact An attacker could entice a user to convert a specially-crafted PDF file,...

[SECURITY] [DSA 628-1] New imlib2 packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 628-1 [email protected] http://www.debian.org/security/ Martin Schulze January 6th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 628-1] New imlib2 packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 628-1 [email protected] http://www.debian.org/security/ Martin Schulze January 6th, 2005 http://www.debian.org/security/faq -...

Debian DSA-628-1 : imlib2 - integer overflows

Pavel Kankovsky discovered that several overflows found in the libXpm library were also present in imlib and imlib2, imaging libraries for X11. An attacker could create a carefully crafted image file in such a way that it could cause an application linked with imlib or imlib2 to execute arbitrary...

Debian DSA-618-1 : imlib - buffer overflows, integer overflows

Pavel Kankovsky discovered that several overflows found in the libXpm library were also present in imlib, an imaging library for X and X11. An attacker could create a carefully crafted image file in such a way that it could cause an application linked with imlib to execute arbitrary code when the...

[SECURITY] [DSA 618-1] New imlib packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 618-1 [email protected] http://www.debian.org/security/ Martin Schulze December 24th, 2004 http://www.debian.org/security/faq -...

CVE-2004-0803

Multiple vulnerabilities in the RLE run length encoding decoders for libtiff 3.6.1 and earlier, related to buffer overflows and integer overflows, allow remote attackers to execute arbitrary code via TIFF files...