What Are You Looking For?

Sign Up

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security]  xpdf (SSA:2009-302-01)

New xpdf packages are available for Slackware 9.1, 10.0, 10.1, 10.2, 11.0,
12.0, 12.1, 12.2, 13.0, and -current to fix security issues.

More details about the issues may be found in the Common
Vulnerabilities and Exposures (CVE) database:

  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3603
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3604
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3605
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3606
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3608
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3609


Here are the details from the Slackware 13.0 ChangeLog:
+--------------------------+
patches/packages/xpdf-3.02pl4-i486-1_slack13.0.tgz:  Upgraded.
  This update fixes several security issues that could lead to an
  application crash, or execution of arbitrary code.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3603
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3604
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3605
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3606
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3608
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3609
  (* Security fix *)
+--------------------------+


Where to find the new packages:
+-----------------------------+

HINT:  Getting slow download speeds from ftp.slackware.com?
Give slackware.osuosl.org a try.  This is another primary FTP site
for Slackware that can be considerably faster than downloading
directly from ftp.slackware.com.

Thanks to the friendly folks at the OSU Open Source Lab
(https://osuosl.org) for donating additional FTP and rsync hosting
to the Slackware project!  :-)

Also see the "Get Slack" section on https://slackware.com for
additional mirror sites near you.

Updated package for Slackware 9.1:

Updated package for Slackware 10.0:

Updated package for Slackware 10.1:

Updated package for Slackware 10.2:

Updated package for Slackware 11.0:

Updated package for Slackware 12.0:

Updated package for Slackware 12.1:

Updated package for Slackware 12.2:

Updated package for Slackware 13.0:

Updated package for Slackware x86_64 13.0:

Updated package for Slackware -current:

Updated package for Slackware x86_64 -current:


MD5 signatures:
+-------------+

Slackware 9.1 package:
fd58cae84772ed2c03ca720b0a71ef49  xpdf-3.02pl4-i486-1_slack9.1.tgz

Slackware 10.0 package:
37cf2a9f5c02b6585d622374cd9a8756  xpdf-3.02pl4-i486-1_slack10.0.tgz

Slackware 10.1 package:
a3e2b22532f7a0190782590ee5310b4b  xpdf-3.02pl4-i486-1_slack10.1.tgz

Slackware 10.2 package:
78d27cc6c8a33f21d7e5f21d90aa0c43  xpdf-3.02pl4-i486-1_slack10.2.tgz

Slackware 11.0 package:
da0134b674360e0509689ad68877a21c  xpdf-3.02pl4-i486-1_slack11.0.tgz

Slackware 12.0 package:
e3a10ebf3f499882a8a364963d6287f9  xpdf-3.02pl4-i486-1_slack12.0.tgz

Slackware 12.1 package:
83b8a9b89877987c65f9c1bf3a01b321  xpdf-3.02pl4-i486-1_slack12.1.tgz

Slackware 12.2 package:
ddfd41747e7f76e20a8a39911d0080ac  xpdf-3.02pl4-i486-1_slack12.2.tgz

Slackware 13.0 package:
4e42d51c18a7e354e961857096e09140  xpdf-3.02pl4-i486-1_slack13.0.txz

Slackware x86_64 13.0 package:
977dfd83fdb4c1af3d68ffa12c882424  xpdf-3.02pl4-x86_64-1_slack13.0.txz

Slackware -current package:
3c756246f0db86bea9f9f127f1461e8f  xpdf-3.02pl4-i486-1.txz

Slackware x86_64 -current package:
f8f257349bad0cdf7d0bada5654b0190  xpdf-3.02pl4-x86_64-1.txz


Installation instructions:
+------------------------+

Upgrade the package as root:
# upgradepkg xpdf-3.02pl4-i486-1_slack13.0.txz


+-----+

Slackware: 2009-302-01: xpdf Security Update

October 29, 2009
New xpdf packages are available for Slackware 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, 13.0, and -current to fix security issues

Summary

Here are the details from the Slackware 13.0 ChangeLog: patches/packages/xpdf-3.02pl4-i486-1_slack13.0.tgz: Upgraded. This update fixes several security issues that could lead to an application crash, or execution of arbitrary code. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3603 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3604 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3605 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3606 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3608 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3609 (* Security fix *)

Where Find New Packages

HINT: Getting slow download speeds from ftp.slackware.com? Give slackware.osuosl.org a try. This is another primary FTP site for Slackware that can be considerably faster than downloading directly from ftp.slackware.com.
Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org) for donating additional FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on https://slackware.com for additional mirror sites near you.
Updated package for Slackware 9.1:
Updated package for Slackware 10.0:
Updated package for Slackware 10.1:
Updated package for Slackware 10.2:
Updated package for Slackware 11.0:
Updated package for Slackware 12.0:
Updated package for Slackware 12.1:
Updated package for Slackware 12.2:
Updated package for Slackware 13.0:
Updated package for Slackware x86_64 13.0:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:

MD5 Signatures

Slackware 9.1 package: fd58cae84772ed2c03ca720b0a71ef49 xpdf-3.02pl4-i486-1_slack9.1.tgz
Slackware 10.0 package: 37cf2a9f5c02b6585d622374cd9a8756 xpdf-3.02pl4-i486-1_slack10.0.tgz
Slackware 10.1 package: a3e2b22532f7a0190782590ee5310b4b xpdf-3.02pl4-i486-1_slack10.1.tgz
Slackware 10.2 package: 78d27cc6c8a33f21d7e5f21d90aa0c43 xpdf-3.02pl4-i486-1_slack10.2.tgz
Slackware 11.0 package: da0134b674360e0509689ad68877a21c xpdf-3.02pl4-i486-1_slack11.0.tgz
Slackware 12.0 package: e3a10ebf3f499882a8a364963d6287f9 xpdf-3.02pl4-i486-1_slack12.0.tgz
Slackware 12.1 package: 83b8a9b89877987c65f9c1bf3a01b321 xpdf-3.02pl4-i486-1_slack12.1.tgz
Slackware 12.2 package: ddfd41747e7f76e20a8a39911d0080ac xpdf-3.02pl4-i486-1_slack12.2.tgz
Slackware 13.0 package: 4e42d51c18a7e354e961857096e09140 xpdf-3.02pl4-i486-1_slack13.0.txz
Slackware x86_64 13.0 package: 977dfd83fdb4c1af3d68ffa12c882424 xpdf-3.02pl4-x86_64-1_slack13.0.txz
Slackware -current package: 3c756246f0db86bea9f9f127f1461e8f xpdf-3.02pl4-i486-1.txz
Slackware x86_64 -current package: f8f257349bad0cdf7d0bada5654b0190 xpdf-3.02pl4-x86_64-1.txz

Severity
[slackware-security] xpdf (SSA:2009-302-01)
New xpdf packages are available for Slackware 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, 13.0, and -current to fix security issues.
More details about the issues may be found in the Common Vulnerabilities and Exposures (CVE) database:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3603 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3604 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3605 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3606 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3608 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3609

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg xpdf-3.02pl4-i486-1_slack13.0.txz

Related News

691 Malicious npm Packages and 49 PyPI Components Containing Crypto-Miners, Remote Access Trojans Discovered

Feb 22, 2023

Researchers Uncover 700+ Malicious Open Source Packages

Feb 22, 2023

News

Advisories

HOWTOs

Features

Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses
Scanning and Defending Networks with Nmap
CISA Issues Urgent Warning Over Active Exploitation of Looney Tunables glibc Bug

About Us

Powered By

Footer Logo