Back to search
CVE-2010-2575
Published: Aug 30, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
Heap-based buffer overflow in the RLE decompression functionality in the TranscribePalmImageToJPEG function in generators/plucker/inplug/image.cpp in Okular in KDE SC 4.3.0 through 4.5.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted image in a PDB file.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
USN-979-1
vendor-advisory
x_refsource_UBUNTU
ADV-2010-2178
vdb-entry
x_refsource_VUPEN
ADV-2010-2202
vdb-entry
x_refsource_VUPEN
ADV-2010-2219
vdb-entry
x_refsource_VUPEN
41132
third-party-advisory
x_refsource_SECUNIA
http://www.kde.org/info/security/advisory-20100825-1.txt
x_refsource_CONFIRM
20100825 Secunia Research: KDE Okular PDB Parsing RLE Decompression Buffer Overflow
mailing-list
x_refsource_BUGTRAQ
FEDORA-2010-13661
vendor-advisory
x_refsource_FEDORA
SSA:2010-240-03
vendor-advisory
x_refsource_SLACKWARE
FEDORA-2010-13629
vendor-advisory
x_refsource_FEDORA
okularpdb-imagecpp-bo(61371)
vdb-entry
x_refsource_XF
ADV-2010-2206
vdb-entry
x_refsource_VUPEN
MDVSA-2010:162
vendor-advisory
x_refsource_MANDRIVA
67454
vdb-entry
x_refsource_OSVDB
ADV-2010-2230
vdb-entry
x_refsource_VUPEN
41086
third-party-advisory
x_refsource_SECUNIA
ADV-2010-2179
vdb-entry
x_refsource_VUPEN
40952
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2010:018
vendor-advisory
x_refsource_SUSE
http://secunia.com/secunia_research/2010-109/
x_refsource_MISC
FEDORA-2010-13589
vendor-advisory
x_refsource_FEDORA
https://bugzilla.redhat.com/show_bug.cgi?id=627289
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now