CVE-2009-0196

2009-04-16T00:00:00
ID UB:CVE-2009-0196
Type ubuntucve
Reporter ubuntu.com
Modified 2009-04-16T00:00:00

Description

Heap-based buffer overflow in the big2_decode_symbol_dict function (jbig2_symbol_dict.c) in the JBIG2 decoding library (jbig2dec) in Ghostscript 8.64, and probably earlier versions, allows remote attackers to execute arbitrary code via a PDF file with a JBIG2 symbol dictionary segment with a large run length value.

Notes

Author| Note
---|---
mdeslaur | Secunia advisory SA34292