Alerts This Week
Warning Icon 1 560
Alerts This Week
Warning Icon 1 560

Slackware: 2023-051-03 Critical: Libxml2 XML Parsing Security Advisory

slackware
Calendar Grey May 10, 2009
Dist Slackware Esm H88
Recent xpdf updates for Slackware tackle numerous security vulnerabilities, offering critical enhancements for several releases.
New xpdf packages are available for Slackware 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, and -current to fix security issues

Summary

Here are the details from the Slackware 12.2 ChangeLog: patches/packages/xpdf-3.02pl3-i486-1_slack12.2.tgz: Upgraded to xpdf-3.02pl3. This update fixes several overflows that may result in crashes or the execution of arbitrary code as the xpdf user. For more information, see: https://www.cve.org/CVERecord?id=CVE-2009-0146 https://www.cve.org/CVERecord?id=CVE-2009-0147 https://www.cve.org/CVERecord?id=CVE-2009-0165 https://www.cve.org/CVERecord?id=CVE-2009-0166 https://www.cve.org/CVERecord?id=CVE-2009-0799 https://www.cve.org/CVERecord?id=CVE-2009-0800 https://www.cve.org/CVERecord?id=CVE-2009-1179 https://www.cve.org/CVERecord?id=CVE-2009-1180 https://www.cve.org/CVERecord?id=CVE-2009-1181 https://www.cve.org/CVERecord?id=CVE-2009-1182 https://www.cve.org/CVERecord?id=CVE-2009-1183 (* Security fix *)

Topics%20covered

Topics Covered

security advisory security issue critical Slackware xpdf Libxml2 XML Parsing

Where Find New Packages

HINT: Getting slow download speeds from ftp.slackware.com? Give slackware.osuosl.org a try. This is another primary FTP site for Slackware that can be considerably faster than downloading directly from ftp.slackware.com.
Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating additional FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 9.1:
Updated package for Slackware 10.0:
Updated package for Slackware 10.1:
Updated package for Slackware 10.2:
Updated package for Slackware 11.0:
Updated package for Slackware 12.0:
Updated package for Slackware 12.1:
Updated package for Slackware 12.2:
Updated package for Slackware -current:

MD5 Signatures

Slackware 9.1 package: cdf099ca7485e7ad8d46bfb1013919c9 xpdf-3.02pl3-i486-1_slack9.1.tgz
Slackware 10.0 package: bbc25dd3dc736f1e09feaf4193e92da5 xpdf-3.02pl3-i486-1_slack10.0.tgz
Slackware 10.1 package: 5bb08ab7677ace9890825454175a2c98 xpdf-3.02pl3-i486-1_slack10.1.tgz
Slackware 10.2 package: 0e70e2bf0153c24dc47237506ebf456b xpdf-3.02pl3-i486-1_slack10.2.tgz
Slackware 11.0 package: e34eb01198e9c6468a4cf57bdfe51dbf xpdf-3.02pl3-i486-1_slack11.0.tgz
Slackware 12.0 package: 4d2a17f254c145c4350357ef7ca8dc5a xpdf-3.02pl3-i486-1_slack12.0.tgz
Slackware 12.1 package: 77f4bf9aee1436687d1d40af9420d76e xpdf-3.02pl3-i486-1_slack12.1.tgz
Slackware 12.2 package: 4f050880552995a8a97f90535f2f6af6 xpdf-3.02pl3-i486-1_slack12.2.tgz
Slackware -current package: 5ebcdd3fe946298e91eef9bf17d5a021 xpdf-3.02pl3-i486-1.txz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory security issue critical Slackware xpdf Libxml2 XML Parsing

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg xpdf-3.02pl3-i486-1_slack12.2.tgz

Related News

Your message here