Xpdf是一款处理PDF的应用程序
Xpdf存在多个缓冲区溢出问题,远程攻击者可以利用漏洞以应用程序权限执行任意指令。
1)xpdf/Stream.cc文件中的"DCTStream::readProgressiveDataUnit()"方法存在数组索引错误,通过特殊构建的PDF文件可造成内存破坏。
2)xpdf/Stream.cc文件中的"DCTStream::reset()"方法存在整数溢出错误,可导致基于堆的缓冲区溢出。
3)xpdf/Stream.cc中的"CCITTFaxStream::lookChar()"方法存在边界错误,通过特殊构建的"CCITTFaxDecode"过滤器可导致触发基于堆的缓冲区溢出。
Xpdf Xpdf 3.02pl1
teTeX teTeX 1.0.7
厂商解决方案
补丁下载:
Xpdf Xpdf 3.02pl1
Xpdf xpdf-3.02pl2.patch
<a href=“ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl2.patch” target=“_blank”>ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl2.patch</a>
KDE KOffice 1.6.3
KDE koffice-1.6.3-xpdf2-CVE-2007-4352-5392-5393.diff
<a href=“ftp://ftp.kde.org/pub/kde/security_patches/koffice-1.6.3-xpdf2-CVE-200” target=“_blank”>ftp://ftp.kde.org/pub/kde/security_patches/koffice-1.6.3-xpdf2-CVE-200</a> 7-4352-5392-5393.diff
KDE KDE 3.5.5
KDE post-3.5.5-kdegraphics-CVE-2007-5393.diff
<a href=“ftp://ftp.kde.org/pub/kde/security_patches/post-3.5.5-kdegraphics-CVE-” target=“_blank”>ftp://ftp.kde.org/pub/kde/security_patches/post-3.5.5-kdegraphics-CVE-</a> 2007-5393.diff
KDE KDE 3.5.6
KDE post-3.5.5-kdegraphics-CVE-2007-5393.diff
<a href=“ftp://ftp.kde.org/pub/kde/security_patches/post-3.5.5-kdegraphics-CVE-” target=“_blank”>ftp://ftp.kde.org/pub/kde/security_patches/post-3.5.5-kdegraphics-CVE-</a> 2007-5393.diff
KDE KDE 3.5.7
KDE post-3.5.5-kdegraphics-CVE-2007-5393.diff
<a href=“ftp://ftp.kde.org/pub/kde/security_patches/post-3.5.5-kdegraphics-CVE-” target=“_blank”>ftp://ftp.kde.org/pub/kde/security_patches/post-3.5.5-kdegraphics-CVE-</a> 2007-5393.diff
KDE KDE 3.5.8
KDE post-3.5.8-kdegraphics-kpdf.diff
<a href=“ftp://ftp.kde.org/pub/kde/security_patches/post-3.5.8-kdegraphics-kpdf.diff” target=“_blank”>ftp://ftp.kde.org/pub/kde/security_patches/post-3.5.8-kdegraphics-kpdf.diff</a>