Vulnerabilities in Xpdf affect several open source products

    Date13 Oct 2010
    Posted ByAnthony Pell
    According to a report from Red Hat, two vulnerabilities in the free PDF reader Xpdf can be exploited via manipulated PDF documents to compromise a victim's system. The flaws are reportedly due to an uninitialised pointer and an array index error. These problems extend to a number of applications that use the Xpdf code, including, poppler, CUPS, gPDF and KPDF. However, Red Hat hasn't released specific information about affected versions. Whether the document viewer Evince, which relies on poppler, is also affected is unknown.
    You are not authorised to post comments.

    LinuxSecurity Poll

    Do you reuse passwords across multiple accounts?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 2 answer(s).

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.