Explore top 10 tips to secure your open-source projects now. Read More
×
Date: Fri, 18 Apr 2008 15:45:54 -0500 Reply-To: Troy DawsonSender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for xpdf on SL4.x i386/x86_64 Comments: To: " This email address is being protected from spambots. You need JavaScript enabled to view it. "Synopsis: Important: xpdf security update Issue date: 2008-04-17 CVE Names: CVE-2008-1693 Kees Cook discovered a flaw in the way xpdf displayed malformed fonts embedded in PDF files. An attacker could create a malicious PDF file that would cause xpdf to crash, or, potentially, execute arbitrary code when opened. (CVE-2008-1693) SL 4.x SRPMS: xpdf-3.00-16.el4.src.rpm i386: xpdf-3.00-16.el4.i386.rpm x86_64: xpdf-3.00-16.el4.x86_64.rpm -Connie Sieh -Troy Dawson