remote code execution in xpdf, kdegraphics3-pdf, koffice, libextractor,

2007-11-1416:50:40

lists.opensuse.org

0.205 Low

EPSS

Percentile

95.9%

JSON

Secunia Research reported three security bugs in xpdf. The first problem occurs while indexing an array in DCTStream:: readProgressiveDataUnit() and is tracked by CVE-2007-4352. Another method in the same class named reset() is vulnerable to an integer overflow which leads to an overflow on the heap, CVE-2007-5392. The last bug also causes an overflow on the heap but this time in method lookChar() of class CCITTFaxStream, CVE-2007-5393. All three bugs can be exploited remotely with a crafted PDF file with user- assistance only. These bugs do not only affect xpdf but also the following packages: kdegraphics3-pdf, koffice, libextractor, poppler, gpdf, cups, pdf, pdftohtml

Solution

There is no work-around kown.

OSVersionArchitecturePackageVersionFilename
openSUSE10.0i586koffice-extra< 1.4.1-10.8koffice-extra-1.4.1-10.8.i586.rpm
openSUSE10.3ppckoffice-spreadsheet< 1.6.3-51.3koffice-spreadsheet-1.6.3-51.3.ppc.rpm
openSUSE10.2x86_64poppler-tools< 0.5.4-33.5poppler-tools-0.5.4-33.5.x86_64.rpm
SUSE Linux Enterprise Software Development Kit10.1ia64poppler-devel< 0.4.4-19.15poppler-devel-0.4.4-19.15.ia64.rpm
openSUSE10.2x86_64poppler-qt< 0.5.4-33.5poppler-qt-0.5.4-33.5.x86_64.rpm
openSUSE10.3x86_64cups-devel< 1.2.12-22.4cups-devel-1.2.12-22.4.x86_64.rpm
openSUSE10.3x86_64cups-client< 1.2.12-22.4cups-client-1.2.12-22.4.x86_64.rpm
SUSE Linux Enterprise Server10.1s390xcups-libs-32bit< 1.1.23-40.32cups-libs-32bit-1.1.23-40.32.s390x.rpm
openSUSE10.0x86_64libextractor-devel< 0.5.2-3.11libextractor-devel-0.5.2-3.11.x86_64.rpm
openSUSE10.3x86_64poppler-tools< 0.5.4-101.2poppler-tools-0.5.4-101.2.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
openSUSE	10.0	i586	koffice-extra	< 1.4.1-10.8	koffice-extra-1.4.1-10.8.i586.rpm
openSUSE	10.3	ppc	koffice-spreadsheet	< 1.6.3-51.3	koffice-spreadsheet-1.6.3-51.3.ppc.rpm
openSUSE	10.2	x86_64	poppler-tools	< 0.5.4-33.5	poppler-tools-0.5.4-33.5.x86_64.rpm
SUSE Linux Enterprise Software Development Kit	10.1	ia64	poppler-devel	< 0.4.4-19.15	poppler-devel-0.4.4-19.15.ia64.rpm
openSUSE	10.2	x86_64	poppler-qt	< 0.5.4-33.5	poppler-qt-0.5.4-33.5.x86_64.rpm
openSUSE	10.3	x86_64	cups-devel	< 1.2.12-22.4	cups-devel-1.2.12-22.4.x86_64.rpm
openSUSE	10.3	x86_64	cups-client	< 1.2.12-22.4	cups-client-1.2.12-22.4.x86_64.rpm
SUSE Linux Enterprise Server	10.1	s390x	cups-libs-32bit	< 1.1.23-40.32	cups-libs-32bit-1.1.23-40.32.s390x.rpm
openSUSE	10.0	x86_64	libextractor-devel	< 0.5.2-3.11	libextractor-devel-0.5.2-3.11.x86_64.rpm
openSUSE	10.3	x86_64	poppler-tools	< 0.5.4-101.2	poppler-tools-0.5.4-101.2.x86_64.rpm