subject:"Bug#322458\: CAN\-2005\-2097\: DoS vulnerability through PDFs with crafted loca tables"

Bug#322458: CAN-2005-2097: DoS vulnerability through PDFs with crafted loca tables

2005-08-10 Thread Moritz Muehlenhoff

Package: kpdf
Severity: important
Tags: security patch

A DoS vulnerability has been found in xpdf that affects the kpdf
of the soon to be uploaded 3.4.1 packages:

| kpdf, the KDE pdf viewer, shares code with xpdf. xpdf contains
| a vulnerability that causes it to write a file in $TMPDIR with
| almost infinite size, which can severly impact system performance.

Please see this URL for details and a patch:
http://www.kde.org/info/security/advisory-20050809-1.txt

Cheers,
Moritz

-- System Information:
Debian Release: testing/unstable
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.12-rc5
Locale: LANG=C, [EMAIL PROTECTED] (charmap=ISO-8859-15)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]

Bug#322458: CAN-2005-2097: DoS vulnerability through PDFs with crafted loca tables

2005-08-10 Thread Isaac Clerencia

On Wednesday, 10 August 2005 21:00, Moritz Muehlenhoff wrote:
 A DoS vulnerability has been found in xpdf that affects the kpdf
 of the soon to be uploaded 3.4.1 packages:
 ^
wrong :P, the soon to be uploaded packages are going to be 3.4.2, where the 
bug is fixed

-- 
Isaac Clerencia at Warp Networks, http://www.warp.es
Work: [EMAIL PROTECTED]   | Debian: [EMAIL PROTECTED]


pgpFIYQI7E3NB.pgp
Description: PGP signature

Bug#322458: CAN-2005-2097: DoS vulnerability through PDFs with crafted loca tables

Bug#322458: CAN-2005-2097: DoS vulnerability through PDFs with crafted loca tables

2 matches

Site Navigation

Mail list logo

Footer information