what you don't know can hurt you
Showing 1 - 1 of 1 RSS Feed

Files

Mandriva Linux Security Advisory 2010-231
Posted Nov 12, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-231 - The Gfx::getPos function in the PDF parser in poppler, allows context-dependent attackers to cause a denial of service via unknown vectors that trigger an uninitialized pointer dereference. The PostScriptFunction::PostScriptFunction function in poppler/Function.cc in the PDF parser in poppler, allows context-dependent attackers to cause a denial of service via a PDF file that triggers an uninitialized pointer dereference. The FoFiType1::parse function in fofi/FoFiType1.cc in the PDF parser in poppler, allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via a PDF file with a crafted Type1 font that contains a negative array index, which bypasses input validation and which triggers memory corruption. The updated packages have been patched to correct these issues.

tags | advisory, denial of service, arbitrary
systems | linux, mandriva
advisories | CVE-2010-3702, CVE-2010-3703, CVE-2010-3704
MD5 | 172505f6e430eff48aa714d4e9ce4489
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Evernote Critical Flaw Opened Personal Data Of Millions To Attack
Posted Jun 14, 2019

tags | headline, privacy, flaw, chrome
Spirit Confirms ASCO Industries Cyberattack
Posted Jun 14, 2019

tags | headline, malware, fraud
Symantec Plays Down Unreported Breach Of Test Data
Posted Jun 14, 2019

tags | headline, hacker, data loss, password, symantec
Julian Assange's Extradition Hearing Set For 2020
Posted Jun 14, 2019

tags | headline, government, privacy, usa, britain, data loss, cyberwar, spyware
4 US Agencies Don't Properly Verify Your Data Due To The Equifax Breach
Posted Jun 14, 2019

tags | headline, government, privacy, usa, data loss, fraud, identity theft
JavaScript Template Attacks Expose New Browser Fingerprinting Vectors
Posted Jun 14, 2019

tags | headline, flaw, spyware
High Severity Cisco Flaw In IOS XE Enables Device Takeover
Posted Jun 13, 2019

tags | headline, flaw, cisco
Facebook Emails Seem To Show Zuck Knew Of Privacy Issues
Posted Jun 13, 2019

tags | headline, privacy, email, data loss, facebook
Exim Email Servers Are Now Under Attack
Posted Jun 13, 2019

tags | headline, hacker, privacy, email, flaw
EFF Asks For DOJ Efforts To Break Facebook Encryption To Be Made Public
Posted Jun 13, 2019

tags | headline, government, privacy, usa, spyware, facebook, social, cryptography
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close