(RHSA-2009:1680) Important: xpdf security update

2009-12-1600:00:00

access.redhat.com

EPSS

0.006

Percentile

79.1%

JSON

Xpdf is an X Window System based viewer for Portable Document Format (PDF)
files.

Petr Gajdos and Christian Kornacker of SUSE reported a buffer overflow flaw
in Xpdf’s Type 1 font parser. A specially-crafted PDF file with an embedded
Type 1 font could cause Xpdf to crash or, possibly, execute arbitrary code
when opened. (CVE-2009-4035)

Users are advised to upgrade to this updated package, which contains a
backported patch to correct this issue.

OSVersionArchitecturePackageVersionFilename
RedHat4x86_64xpdf< 3.00-23.el4_8.1xpdf-3.00-23.el4_8.1.x86_64.rpm
RedHat4srcxpdf< 3.00-23.el4_8.1xpdf-3.00-23.el4_8.1.src.rpm
RedHat4s390xpdf< 3.00-23.el4_8.1xpdf-3.00-23.el4_8.1.s390.rpm
RedHat4ia64xpdf< 3.00-23.el4_8.1xpdf-3.00-23.el4_8.1.ia64.rpm
RedHat4i386xpdf< 3.00-23.el4_8.1xpdf-3.00-23.el4_8.1.i386.rpm
RedHat4s390xxpdf< 3.00-23.el4_8.1xpdf-3.00-23.el4_8.1.s390x.rpm
RedHat4ppcxpdf< 3.00-23.el4_8.1xpdf-3.00-23.el4_8.1.ppc.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	4	x86_64	xpdf	< 3.00-23.el4_8.1	xpdf-3.00-23.el4_8.1.x86_64.rpm
RedHat	4	src	xpdf	< 3.00-23.el4_8.1	xpdf-3.00-23.el4_8.1.src.rpm
RedHat	4	s390	xpdf	< 3.00-23.el4_8.1	xpdf-3.00-23.el4_8.1.s390.rpm
RedHat	4	ia64	xpdf	< 3.00-23.el4_8.1	xpdf-3.00-23.el4_8.1.ia64.rpm
RedHat	4	i386	xpdf	< 3.00-23.el4_8.1	xpdf-3.00-23.el4_8.1.i386.rpm
RedHat	4	s390x	xpdf	< 3.00-23.el4_8.1	xpdf-3.00-23.el4_8.1.s390x.rpm
RedHat	4	ppc	xpdf	< 3.00-23.el4_8.1	xpdf-3.00-23.el4_8.1.ppc.rpm

EPSS

0.006

Percentile

79.1%

JSON

Related for RHSA-2009:1680