Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Mageia 7: MGASA-2020-0449 Moderate: Pdfresurrect Heap Overflow Fix

mageia
Calendar Grey December 5, 2020
Dist Mageia Esm H88
The latest release of the pdfresurrect software addresses critical vulnerabilities associated with heap overflow and improper header checks. Discover more details!
In PDFResurrect before 0.20, lack of header validation checks causes a heap-buffer-overflow in pdf_get_version() (CVE-2020-20740)

Summary

In PDFResurrect before 0.20, lack of header validation checks causes a heap-buffer-overflow in pdf_get_version() (CVE-2020-20740).

References

- https://bugs.mageia.org/show_bug.cgi?id=27704

- https://lists.debian.org/debian-lts-announce/2020/12/msg00002.html

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/JMEEEPBBGER5LPABBRVZLMCC6Z24RBXW/

- https://www.cve.org/CVERecord?id=CVE-2020-20740

Topics%20covered

Topics Covered

security advisory moderate security issue software update heap overflow buffer fix mageia pdfresurrect

Resolution

SRPMS

- 7/core/pdfresurrect-0.21-1.mga7

Publication date: 05 Dec 2020
URL: https://advisories.mageia.org/MGASA-2020-0449.html
Type: security
CVE: CVE-2020-20740

Topics%20covered

Topics Covered

security advisory moderate security issue software update heap overflow buffer fix mageia pdfresurrect

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here