Lucene search

PRIOn knowledge basePRION:CVE-2009-3604

HistoryOct 21, 2009 - 5:30 p.m.

Heap overflow

2009-10-2117:30:00

PRIOn knowledge base

www.prio-n.com

AI Score

8.1

Confidence

High

EPSS

0.418

Percentile

97.3%

JSON

The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document that triggers a NULL pointer dereference or a heap-based buffer overflow.

References

ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl4.patch

cgit.freedesktop.org/poppler/poppler/commit/?id=9cf2325fb2

cgit.freedesktop.org/poppler/poppler/diff/?id=284a928996&id2=75c3466ba2

lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html

secunia.com/advisories/37023

secunia.com/advisories/37028

secunia.com/advisories/37037

secunia.com/advisories/37042

secunia.com/advisories/37043

secunia.com/advisories/37053

secunia.com/advisories/37077

secunia.com/advisories/37079

secunia.com/advisories/37114

secunia.com/advisories/37159

secunia.com/advisories/39327

secunia.com/advisories/39938

securitytracker.com/id?1023029

site.pi3.com.pl/adv/xpdf.txt

sunsolve.sun.com/search/document.do?assetkey=1-66-274030-1

sunsolve.sun.com/search/document.do?assetkey=1-77-1021706.1-1

www.debian.org/security/2010/dsa-2028

www.debian.org/security/2010/dsa-2050

www.mandriva.com/security/advisories?name=MDVSA-2009:287

www.mandriva.com/security/advisories?name=MDVSA-2010:087

www.mandriva.com/security/advisories?name=MDVSA-2011:175

www.securityfocus.com/bid/36703

www.ubuntu.com/usn/USN-850-1

www.ubuntu.com/usn/USN-850-3

www.vupen.com/english/advisories/2009/2924

www.vupen.com/english/advisories/2009/2928

www.vupen.com/english/advisories/2010/0802

www.vupen.com/english/advisories/2010/1040

www.vupen.com/english/advisories/2010/1220

bugzilla.redhat.com/show_bug.cgi?id=526911

exchange.xforce.ibmcloud.com/vulnerabilities/53795

lists.fedoraproject.org/pipermail/package-announce/2010-February/035340.html

lists.fedoraproject.org/pipermail/package-announce/2010-February/035399.html

lists.fedoraproject.org/pipermail/package-announce/2010-February/035408.html

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10969

rhn.redhat.com/errata/RHSA-2009-1500.html

rhn.redhat.com/errata/RHSA-2009-1501.html

rhn.redhat.com/errata/RHSA-2009-1502.html

rhn.redhat.com/errata/RHSA-2009-1503.html

rhn.redhat.com/errata/RHSA-2009-1512.html

www.redhat.com/archives/fedora-package-announce/2009-October/msg00750.html

www.redhat.com/archives/fedora-package-announce/2009-October/msg00784.html