What Are You Looking For?

Sign Up
Date:         Wed, 16 Dec 2009 13:27:47 -0600
Reply-To:     Troy Dawson 
Sender:       Security Errata for Scientific Linux
              
From:         Troy Dawson 
Subject:      Security ERRATA Important: xpdf on SL4.x i386/x86_64
Comments: To: "scientific-linux-errata@fnal.gov"
          

Synopsis:	Important: xpdf security update
Issue date:	2009-12-16
CVE Names:	CVE-2009-4035

Petr Gajdos and Christian Kornacker of SUSE reported a buffer overflow 
flaw in Xpdf's Type 1 font parser. A specially-crafted PDF file with an 
embedded Type 1 font could cause Xpdf to crash or, possibly, execute 
arbitrary code when opened. (CVE-2009-4035)

SL 4.x

     SRPMS:
xpdf-3.00-23.el4_8.1.src.rpm
     i386:
xpdf-3.00-23.el4_8.1.i386.rpm
     x86_64:
xpdf-3.00-23.el4_8.1.x86_64.rpm

-Connie Sieh
-Troy Dawson

SciLinux: CVE-2009-4035 Important: xpdf SL4.x i386/x86_64

Important: xpdf security update

Summary

Date:         Wed, 16 Dec 2009 13:27:47 -0600Reply-To:     Troy Dawson Sender:       Security Errata for Scientific Linux              From:         Troy Dawson Subject:      Security ERRATA Important: xpdf on SL4.x i386/x86_64Comments: To: "scientific-linux-errata@fnal.gov"          Synopsis:	Important: xpdf security updateIssue date:	2009-12-16CVE Names:	CVE-2009-4035Petr Gajdos and Christian Kornacker of SUSE reported a buffer overflow flaw in Xpdf's Type 1 font parser. A specially-crafted PDF file with an embedded Type 1 font could cause Xpdf to crash or, possibly, execute arbitrary code when opened. (CVE-2009-4035)SL 4.x     SRPMS:xpdf-3.00-23.el4_8.1.src.rpm     i386:xpdf-3.00-23.el4_8.1.i386.rpm     x86_64:xpdf-3.00-23.el4_8.1.x86_64.rpm-Connie Sieh-Troy Dawson



Security Fixes

Severity

Related News

Kubernetes Security on AWS: A Practical Guide

Nov 18, 2023

Kinsing Hackers Exploit Apache ActiveMQ Vulnerability to Deploy Linux Rootkits

Nov 25, 2023

Nitrux 3.2.0 Linux Distro Released with Enhanced Security and New Features

Nov 28, 2023

Severe Firefox, Thunderbird Bugs Could Lead to System Takeover

Dec 2, 2023

News

Advisories

HOWTOs

Features

Using Open Source to Ensure Compliance & Data Integrity through Data Governance
Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024

About Us

Powered By

Footer Logo