[Bug 129940] [XPDF] possible buffer overflow and execution of arbitrary code

hk47 bugtracker at slideomania.com
Thu Aug 2 12:50:04 UTC 2007 

Public bug reported:

Affects:
xpdf, kpdf, kword, cups, gpdf, poppler

Quoting http://www.heise-security.co.uk/news/93637 :

"The KDE developers have published a security advisory concerning a
vulnerability when processing crafted PDFs. Opening one of these files
with XPDF, kpdf, KOffice or any other software which has adopted the
source code from XPDF can cause a buffer overflow and execution of an
arbitrary program code.

The bug stems from an integer overflow in the function
StreamPredictor::StreamPredictor(). The developers have prepared source-
code patches for the software versions affected. The bug is found in
XPDF 3.02 and possibly the previous versions, KDE 3.2.0 up to and
including 3.5.7 as well as KOffice 1.2.1 and later versions.

Other applications which use the faulty code from XPDF also contain the
vulnerability. Red Hat has now also released software updates for CUPS,
gpdf and poppler which close the hole. The other Linux distributors are
also soon to release up-dated packages, which users should install as
soon as they can."

References:
- kpdf/kword/xpdf stack based buffer overflow, security advisory from KDE developers:
http://www.kde.org/info/security/advisory-20070730-1.txt
- cups security update, bug report from Red Hat:
http://rhn.redhat.com/errata/RHSA-2007-0720.html
- gpdf security update, bug report from Red Hat:
http://rhn.redhat.com/errata/RHSA-2007-0730.html
- poppler security update, bug report from Red Hat:
http://rhn.redhat.com/errata/RHSA-2007-0732.html

** Affects: cups-pdf (Ubuntu)
     Importance: Undecided
         Status: New

** Affects: gpdf (Ubuntu)
     Importance: Undecided
         Status: New

** Affects: kdegraphics (Ubuntu)
     Importance: Undecided
         Status: New

** Affects: koffice (Ubuntu)
     Importance: Undecided
         Status: New

** Affects: poppler (Ubuntu)
     Importance: Undecided
         Status: New

** Affects: xpdf (Ubuntu)
     Importance: Undecided
         Status: New

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2007-3387

** Visibility changed to: Public

-- 
[XPDF] possible buffer overflow and execution of arbitrary code
https://bugs.launchpad.net/bugs/129940
You received this bug notification because you are a member of Kubuntu
Team, which is a bug contact for kdegraphics in ubuntu.

More information about the kubuntu-bugs mailing list