Package: poppler Version: FILLINAFFECTEDVERSION Severity: FILLINSEVERITY Tags: security
Hi, the following CVE (Common Vulnerabilities & Exposures) id was published for poppler. CVE-2008-1693[0]: | The CairoFont::create function in CairoFontEngine.cc in Poppler, possibly | before 0.8.0, as used in Xpdf, Evince, ePDFview, KWord, and other applications, | does not properly handle embedded fonts in PDF files, which allows remote | attackers to execute arbitrary code via a crafted font object, related to | dereferencing a function pointer associated with the type of this font object. If you fix the vulnerability please also make sure to include the CVE id in your changelog entry. For further information see: [0] http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1693 http://security-tracker.debian.net/tracker/CVE-2008-1693 -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
pgpVgoE3QZ1Il.pgp
Description: PGP signature
