CVE-2009-0755

Related Files

Debian Linux Security Advisory 1941-1

Posted Nov 25, 2009

Authored by Debian | Site debian.org

Debian Linux Security Advisory 1941-1 - Several integer overflows, buffer overflows and memory allocation errors were discovered in the Poppler PDF rendering library, which may lead to denial of service or the execution of arbitrary code if a user is tricked into opening a malformed PDF document.

tags | advisory, denial of service, overflow, arbitrary

systems | linux, debian

advisories | CVE-2009-0755, CVE-2009-3903, CVE-2009-3904, CVE-2009-3905, CVE-2009-3906, CVE-2009-3907, CVE-2009-3908, CVE-2009-3909, CVE-2009-3938

SHA-256 | 46a991bbb466e2a79d085e8e2a84034b2d60000ac51bbc00a91c8a0ce534d6fa

Download | Favorite | View

Ubuntu Security Notice 850-1

Posted Oct 21, 2009

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 850-1 - It was discovered that poppler contained multiple security issues when parsing malformed PDF documents. If a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial of service or execute arbitrary code with privileges of the user invoking the program.

tags | advisory, denial of service, arbitrary

systems | linux, ubuntu

advisories | CVE-2009-0755, CVE-2009-3603, CVE-2009-3604, CVE-2009-3605, CVE-2009-3607, CVE-2009-3608, CVE-2009-3609

SHA-256 | 2f82b6f88a4cf4427aa354e47da6d119543a06f31b58f73dfeef3c7d9b2a663b

Download | Favorite | View

Mandriva Linux Security Advisory 2009-068

Posted Mar 8, 2009

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-068-1 - A crafted PDF file that triggers a parsing error allows remote attackers to cause denial of service. This bug is consequence of a wrong processing on FormWidgetChoice::loadDefaults method. A crafted PDF file that triggers a parsing error allows remote attackers to cause denial of service. This bug is consequence of an invalid memory dereference on JBIG2SymbolDict::~JBIG2SymbolDict destructor when JBIG2Stream::readSymbolDictSeg method is used. This update provides fixes for those vulnerabilities. This update does not apply for under Corporate Server 4.0 libpoppler0-0.4.1-3.7.20060mlcs4. The previous packages were not signed, this new update fixes that issue.

tags | advisory, remote, denial of service, vulnerability

systems | linux, mandriva

advisories | CVE-2009-0755, CVE-2009-0756

SHA-256 | 4e323da1368a38f9cc9e608ee61624d1029f85448fa1473e7c58492d8f40e4b4

Download | Favorite | View

Mandriva Linux Security Advisory 2009-068

Posted Mar 7, 2009

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2009-068 - A crafted PDF file that triggers a parsing error allows remote attackers to cause definal of service. This bug is consequence of a wrong processing on FormWidgetChoice::loadDefaults method. A crafted PDF file that triggers a parsing error allows remote attackers to cause definal of service. This bug is consequence of an invalid memory dereference on JBIG2SymbolDict::~JBIG2SymbolDict destructor when JBIG2Stream::readSymbolDictSeg method is used. This update provides fixes for those vulnerabilities. This update does not apply for under Corporate Server 4.0 libpoppler0-0.4.1-3.7.20060mlcs4.

tags | advisory, remote, vulnerability

systems | linux, mandriva

advisories | CVE-2009-0755, CVE-2009-0756

SHA-256 | 512a120f86abcf6b6a9cd6bfe0e57b8ba3cd14d8d0d60faa61d902c11fe550b3

Download | Favorite | View