Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Slackware 13.1 SSA:2010-324-01 Critical xpdf Code Execution Fix

slackware
Calendar Grey November 21, 2010
Dist Slackware Esm H88
Revised xpdf distributions for various Slackware iterations addressing significant security vulnerabilities and enhancing reliability.
New xpdf packages are available for Slackware 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix security issues

Summary

Here are the details from the Slackware 13.1 ChangeLog: patches/packages/xpdf-3.02pl5-i486-1_slack13.1.txz: Upgraded. This update fixes security issues that could lead to an application crash, or execution of arbitrary code. For more information, see: https://www.cve.org/CVERecord?id=CVE-2010-3702 https://www.cve.org/CVERecord?id=CVE-2010-3703 https://www.cve.org/CVERecord?id=CVE-2010-3704 (* Security fix *)

Topics%20covered

Topics Covered

security advisory critical issue code execution package upgrade Slackware application crash xpdf

Where Find New Packages

HINT: Getting slow download speeds from ftp.slackware.com? Give slackware.osuosl.org a try. This is another primary FTP site for Slackware that can be considerably faster than downloading directly from ftp.slackware.com.
Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating additional FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 9.1: ftp://ftp.slackware.com/pub/slackware/slackware-9.1/patches/packages/xpdf-3.02pl5-i486-1_slack9.1.tgz
Updated package for Slackware 10.0: ftp://ftp.slackware.com/pub/slackware/slackware-10.0/patches/packages/xpdf-3.02pl5-i486-1_slack10.0.tgz
Updated package for Slackware 10.1: ftp://ftp.slackware.com/pub/slackware/slackware-10.1/patches/packages/xpdf-3.02pl5-i486-1_slack10.1.tgz
Updated package for Slackware 10.2: ftp://ftp.slackware.com/pub/slackware/slackware-10.2/patches/packa...

Read the Full Advisory

MD5 Signatures

Slackware 9.1 package: cf05aac7efc83bc523651043365c5d16 xpdf-3.02pl5-i486-1_slack9.1.tgz
Slackware 10.0 package: fc1f628a79d69d7cc35230d3f3c1fcf3 xpdf-3.02pl5-i486-1_slack10.0.tgz
Slackware 10.1 package: 88baf3efc0ae4d8df456747b88b2b24f xpdf-3.02pl5-i486-1_slack10.1.tgz
Slackware 10.2 package: f0dbbd0e39c4988d6cbfaa2efd2cb13f xpdf-3.02pl5-i486-1_slack10.2.tgz
Slackware 11.0 package: a9a56f5aa92f46d1336b9df354282702 xpdf-3.02pl5-i486-1_slack11.0.tgz
Slackware 12.0 package: c4c7463559d9dc9bdef951e05b3b1b0a xpdf-3.02pl5-i486-1_slack12.0.tgz
Slackware 12.1 package: adbfd59677c89ce989d97a4790790405 xpdf-3.02pl5-i486-1_slack12.1.tgz
Slackware 12.2 package: fe28a635d80e9f696060062afd112d61 xpdf-3.02pl5-i486-1_slack12.2.tgz
Slackware 13.0 package: c6159fe198546607bd7309e32c83aee6 xpdf-3.02pl5-i486-1_slack13.0.txz
Slackware x86_64 13.0 package: 1e5861575ffbdff9c575878e456f63cd xpdf-3.02pl5-x86_64-1_slack13.0.txz
Slackware 13.1 package: 282c6f3c27bb407ac182135f1ee332ee xpdf-3.02pl5-i486-1_slack13.1.txz
Slackware x86_64 13.1 package: daa7b671daff28e6d08ba2979e72a04d xpdf-3.02pl5-x86_64-1_slack13.1.txz
Slackware -current package: 68e7b97ddac27515b6a619762707a3e2 xpdf-3.02pl5-i486-1.txz
Slackware x86_64 -current package: 8bd573e47dc333f74e1fa35dfefb18b2 xpdf-3.02pl5-x86_64-1.txz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory critical issue code execution package upgrade Slackware application crash xpdf

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg xpdf-3.02pl5-i486-1_slack13.1.txz

Your message here