What Are You Looking For?

Sign Up
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2009-3820
2009-04-21 23:55:45
--------------------------------------------------------------------------------

Name        : xpdf
Product     : Fedora 10
Version     : 3.02
Release     : 13.fc10
URL         : https://www.foolabs.com/xpdf/
Summary     : A PDF file viewer for the X Window System
Description :
Xpdf is an X Window System based viewer for Portable Document Format
(PDF) files. Xpdf is a small and efficient program which uses
standard X fonts.

--------------------------------------------------------------------------------
Update Information:

Fix several security updates in xpdf (3.02pl3 patch applied).
--------------------------------------------------------------------------------
ChangeLog:

* Thu Apr 16 2009 Tom "spot" Callaway  - 1:3.02-13
- apply xpdf-3.02pl3 security patch to fix:
  CVE-2009-0799, CVE-2009-0800, CVE-2009-1179, CVE-2009-1180
  CVE-2009-1181, CVE-2009-1182, CVE-2009-1183
* Wed Mar  4 2009 Tom "spot" Callaway  - 1:3.02-12
- add Requires: xorg-x11-fonts-ISO8859-1-100dpi (bz 485404)
* Thu Feb 26 2009 Fedora Release Engineering  - 1:3.02-11
- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
* Wed Feb 11 2009 Tom "spot" Callaway  - 1:3.02-10
- cleanup crash patch a bit (bz 483664)
- improve support for more mouse buttons (bz 483669)
* Wed Dec 10 2008 Tom "spot" Callaway  - 1:3.02-9
- apply debian patches
* Sun Sep 21 2008 Ville Skyttä  - 1:3.02-8
- Fix Patch0:/%patch mismatch.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #495886 - CVE-2009-0799 PDF JBIG2 decoder OOB read
        https://bugzilla.redhat.com/show_bug.cgi?id=495886
  [ 2 ] Bug #495887 - CVE-2009-0800 PDF JBIG2 multiple input validation flaws
        https://bugzilla.redhat.com/show_bug.cgi?id=495887
  [ 3 ] Bug #495889 - CVE-2009-1179 PDF JBIG2 integer overflow
        https://bugzilla.redhat.com/show_bug.cgi?id=495889
  [ 4 ] Bug #495892 - CVE-2009-1180 PDF JBIG2 invalid free()
        https://bugzilla.redhat.com/show_bug.cgi?id=495892
  [ 5 ] Bug #495894 - CVE-2009-1181 PDF JBIG2 NULL dereference
        https://bugzilla.redhat.com/show_bug.cgi?id=495894
  [ 6 ] Bug #495896 - CVE-2009-1182 PDF JBIG2 MMR decoder buffer overflows
        https://bugzilla.redhat.com/show_bug.cgi?id=495896
  [ 7 ] Bug #495899 - CVE-2009-1183 PDF JBIG2 MMR infinite loop DoS
        https://bugzilla.redhat.com/show_bug.cgi?id=495899
  [ 8 ] Bug #490612 - CVE-2009-0146 xpdf: Multiple buffer overflows in JBIG2 decoder (setBitmap, readSymbolDictSeg)
        https://bugzilla.redhat.com/show_bug.cgi?id=490612
  [ 9 ] Bug #490614 - CVE-2009-0147 xpdf: Multiple integer overflows in JBIG2 decoder
        https://bugzilla.redhat.com/show_bug.cgi?id=490614
  [ 10 ] Bug #490625 - CVE-2009-0166 xpdf: Freeing of potentially uninitialized memory in JBIG2 decoder
        https://bugzilla.redhat.com/show_bug.cgi?id=490625
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update xpdf' at the command line.
For more information, refer to "Managing Software with yum",
available at .

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-package-announce

Fedora 10 Update: xpdf-3.02-13.fc10

April 23, 2009
Fix several security updates in xpdf (3.02pl3 patch applied).

Summary

Xpdf is an X Window System based viewer for Portable Document Format

(PDF) files. Xpdf is a small and efficient program which uses

standard X fonts.

Update Information:

Fix several security updates in xpdf (3.02pl3 patch applied).

Change Log

* Thu Apr 16 2009 Tom "spot" Callaway - 1:3.02-13 - apply xpdf-3.02pl3 security patch to fix: CVE-2009-0799, CVE-2009-0800, CVE-2009-1179, CVE-2009-1180 CVE-2009-1181, CVE-2009-1182, CVE-2009-1183 * Wed Mar 4 2009 Tom "spot" Callaway - 1:3.02-12 - add Requires: xorg-x11-fonts-ISO8859-1-100dpi (bz 485404) * Thu Feb 26 2009 Fedora Release Engineering - 1:3.02-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Wed Feb 11 2009 Tom "spot" Callaway - 1:3.02-10 - cleanup crash patch a bit (bz 483664) - improve support for more mouse buttons (bz 483669) * Wed Dec 10 2008 Tom "spot" Callaway - 1:3.02-9 - apply debian patches * Sun Sep 21 2008 Ville Skyttä - 1:3.02-8 - Fix Patch0:/%patch mismatch.

References

[ 1 ] Bug #495886 - CVE-2009-0799 PDF JBIG2 decoder OOB read https://bugzilla.redhat.com/show_bug.cgi?id=495886 [ 2 ] Bug #495887 - CVE-2009-0800 PDF JBIG2 multiple input validation flaws https://bugzilla.redhat.com/show_bug.cgi?id=495887 [ 3 ] Bug #495889 - CVE-2009-1179 PDF JBIG2 integer overflow https://bugzilla.redhat.com/show_bug.cgi?id=495889 [ 4 ] Bug #495892 - CVE-2009-1180 PDF JBIG2 invalid free() https://bugzilla.redhat.com/show_bug.cgi?id=495892 [ 5 ] Bug #495894 - CVE-2009-1181 PDF JBIG2 NULL dereference https://bugzilla.redhat.com/show_bug.cgi?id=495894 [ 6 ] Bug #495896 - CVE-2009-1182 PDF JBIG2 MMR decoder buffer overflows https://bugzilla.redhat.com/show_bug.cgi?id=495896 [ 7 ] Bug #495899 - CVE-2009-1183 PDF JBIG2 MMR infinite loop DoS https://bugzilla.redhat.com/show_bug.cgi?id=495899 [ 8 ] Bug #490612 - CVE-2009-0146 xpdf: Multiple buffer overflows in JBIG2 decoder (setBitmap, readSymbolDictSeg) https://bugzilla.redhat.com/show_bug.cgi?id=490612 [ 9 ] Bug #490614 - CVE-2009-0147 xpdf: Multiple integer overflows in JBIG2 decoder https://bugzilla.redhat.com/show_bug.cgi?id=490614 [ 10 ] Bug #490625 - CVE-2009-0166 xpdf: Freeing of potentially uninitialized memory in JBIG2 decoder https://bugzilla.redhat.com/show_bug.cgi?id=490625

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update xpdf' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
Name : xpdf
Product : Fedora 10
Version : 3.02
Release : 13.fc10
URL : https://www.foolabs.com/xpdf/
Summary : A PDF file viewer for the X Window System

Related News

Nitrux 3.2.0 Linux Distro Released with Enhanced Security and New Features

Nov 28, 2023

Kinsing Hackers Exploit Apache ActiveMQ Vulnerability to Deploy Linux Rootkits

Nov 25, 2023

CISA Orders Federal Agencies to Patch Looney Tunables Linux Bug

Nov 25, 2023

Severe Firefox, Thunderbird Bugs Could Lead to System Takeover

Dec 2, 2023

News

Advisories

HOWTOs

Features

Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses

About Us

Powered By

Footer Logo