Back to search
CVE-2005-2097
Published: Aug 16, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
xpdf and kpdf do not properly validate the "loca" table in PDF files, which allows local users to cause a denial of service (disk consumption and hang) via a PDF file with a "broken" loca table, which causes a large temporary file to be created when xpdf attempts to reconstruct the information.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
RHSA-2005:706
vendor-advisory
x_refsource_REDHAT
17277
third-party-advisory
x_refsource_SECUNIA
RHSA-2005:671
vendor-advisory
x_refsource_REDHAT
oval:org.mitre.oval:def:10280
vdb-entry
signature
x_refsource_OVAL
DSA-1136
vendor-advisory
x_refsource_DEBIAN
MDKSA-2005:138
vendor-advisory
x_refsource_MANDRIVA
SUSE-SR:2005:019
vendor-advisory
x_refsource_SUSE
102972
vendor-advisory
x_refsource_SUNALERT
18398
third-party-advisory
x_refsource_SECUNIA
FLSA-2006:176751
vendor-advisory
x_refsource_FEDORA
DSA-936
vendor-advisory
x_refsource_DEBIAN
USN-163-1
vendor-advisory
x_refsource_UBUNTU
ADV-2007-2280
vdb-entry
x_refsource_VUPEN
RHSA-2005:670
vendor-advisory
x_refsource_REDHAT
18407
third-party-advisory
x_refsource_SECUNIA
25729
third-party-advisory
x_refsource_SECUNIA
DSA-780
vendor-advisory
x_refsource_DEBIAN
14529
vdb-entry
x_refsource_BID
FLSA:175404
vendor-advisory
x_refsource_FEDORA
RHSA-2005:708
vendor-advisory
x_refsource_REDHAT
21339
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now