Integer overflow

Integer overflow in the PSOutputDev::doImageL1Sep function in Xpdf before 3.02pl4, and Poppler 0.x, as used in kdegraphics KPDF, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow...

CVE-2009-3606

CVE-2009-3606 affects Xpdf (PSOutputDev::doImageL1Sep) and Poppler used in kdegraphics KPDF, where a crafted PDF can trigger a heap-based buffer overflow and allow remote code execution. Public references indicate the issue was addressed via updated Xpdf/Poppler packages across multiple distribut...

UBUNTU-CVE-2009-3604

The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted P...

xpdf/poppler: Splash:: drawImage integer overflow and missing allocation return value check

The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted P...

CVE-2009-0791

CVE-2009-0791 involves multiple integer overflows in Xpdf (2.x/3.x) and Poppler 0.x, used by pdftops in CUPS, KDE KPDF, and related components. The issue arises in the JBIG2 decoder and other areas (Decrypt.cxx, FoFiTrueType.cxx, gmem.c, JBIG2Stream.cxx, PSOutputDev.cxx) and can trigger a heap-ba...

CVE-2009-1188

CVE-2009-1188 involves an integer overflow in the JBIG2 decoding path of the SplashBitmap feature. Affected software: Xpdf 3.x (before 3.02pl4) and Poppler (before 0.10.6), used by GPdf and kdegraphics KPDF. Root cause: integer overflow in JBIG2 decoding that can be triggered by a crafted PDF, le...

RedHat Update for kdegraphics RHSA-2008:0238-01

Check for the Version of kdegraphics OpenVAS Vulnerability Test RedHat Update for kdegraphics RHSA-2008:0238-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

Mandrake Linux Security Advisory : kdegraphics (MDKSA-2006:031)

Heap-based buffer overflow in Splash.cc in xpdf allows attackers to cause a denial of service and possibly execute arbitrary code via crafted splash images that produce certain values that exceed the width or height of the associated bitmap. Kdegraphics-kpdf uses a copy of the xpdf code and as su...