Back to search
CVE-2009-1188
Published: Apr 23, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
Integer overflow in the JBIG2 decoding feature in the SplashBitmap::SplashBitmap function in SplashBitmap.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.10.6, as used in GPdf and kdegraphics KPDF, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
39938
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:9957
vdb-entry
signature
x_refsource_OVAL
37028
third-party-advisory
x_refsource_SECUNIA
FEDORA-2010-1377
vendor-advisory
x_refsource_FEDORA
http://bugs.gentoo.org/show_bug.cgi?id=263028#c16
x_refsource_CONFIRM
RHSA-2009:1501
vendor-advisory
x_refsource_REDHAT
37079
third-party-advisory
x_refsource_SECUNIA
https://bugs.launchpad.net/ubuntu/+source/poppler/+bug/361875
x_refsource_CONFIRM
35064
third-party-advisory
x_refsource_SECUNIA
DSA-2028
vendor-advisory
x_refsource_DEBIAN
DSA-2050
vendor-advisory
x_refsource_DEBIAN
FEDORA-2010-1805
vendor-advisory
x_refsource_FEDORA
RHSA-2009:1512
vendor-advisory
x_refsource_REDHAT
FEDORA-2009-6972
vendor-advisory
x_refsource_FEDORA
35618
third-party-advisory
x_refsource_SECUNIA
37077
third-party-advisory
x_refsource_SECUNIA
RHSA-2009:0480
vendor-advisory
x_refsource_REDHAT
http://poppler.freedesktop.org/releases.html
x_refsource_CONFIRM
RHSA-2009:1503
vendor-advisory
x_refsource_REDHAT
34568
vdb-entry
x_refsource_BID
MDVSA-2011:175
vendor-advisory
x_refsource_MANDRIVA
VU#196617
third-party-advisory
x_refsource_CERT-VN
37037
third-party-advisory
x_refsource_SECUNIA
ADV-2010-1040
vdb-entry
x_refsource_VUPEN
ADV-2010-0802
vdb-entry
x_refsource_VUPEN
RHSA-2009:1502
vendor-advisory
x_refsource_REDHAT
poppler-jbig2-splashbitmap-code-execution(50185)
vdb-entry
x_refsource_XF
FEDORA-2009-6982
vendor-advisory
x_refsource_FEDORA
FEDORA-2010-1842
vendor-advisory
x_refsource_FEDORA
http://wiki.rpath.com/Advisories:rPSA-2009-0059
x_refsource_CONFIRM
ADV-2009-2928
vdb-entry
x_refsource_VUPEN
MDVSA-2010:087
vendor-advisory
x_refsource_MANDRIVA
ADV-2010-1220
vdb-entry
x_refsource_VUPEN
ADV-2009-1076
vdb-entry
x_refsource_VUPEN
37053
third-party-advisory
x_refsource_SECUNIA
20090417 rPSA-2009-0059-1 poppler
mailing-list
x_refsource_BUGTRAQ
39327
third-party-advisory
x_refsource_SECUNIA
https://bugzilla.redhat.com/show_bug.cgi?id=495907
x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=526915
x_refsource_CONFIRM
FEDORA-2009-6973
vendor-advisory
x_refsource_FEDORA
37043
third-party-advisory
x_refsource_SECUNIA
34746
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now