Secunia Logo  
 Vulnerability IntelligenceVulnerability ScanningCommunityBlogCorporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > SUSE updates for xpdf / kpdf / gpdf / kword
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists & RSS
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
SUSE updates for xpdf / kpdf / gpdf / kword
Secunia Advisory: SA18416
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2006-01-11
Last Update: 2006-01-13
Popularity: 7,673 views

Critical:
Moderately critical
Impact: DoS
System access
Where: From remote
Solution Status: Vendor Patch

OS:SUSE Linux 10
SuSE Linux 9.0
SuSE Linux 9.1
SUSE Linux 9.2
SUSE Linux 9.3
SuSE Linux Desktop 1.x
SUSE Linux Enterprise Server 9
Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2005-3191
CVE-2005-3192
CVE-2005-3193
CVE-2005-3624
CVE-2005-3625
CVE-2005-3626
CVE-2005-3627
CVE-2005-3628
Description:
SUSE has issued updates for xpdf / kpdf / gpdf / kword. This fixes some vulnerabilities, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a user's system.

For more information:
SA18303
SA17897
SA17920
SA18375
SA17940
SA17908

Solution:
Apply updated packages.

-- x86 Platform --

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/gpdf-2.10.0-12.2.i586.rpm
d18bb30f0ca16745731347cf0650fc68
ftp://ftp.suse.com/pub/suse/i386/upda.../kdegraphics3-pdf-3.4.2-12.2.i586.rpm
e4bc5e4b5b7c0f70af4683fa15dff3f4
ftp://ftp.suse.com/pub/suse/i386/upda...ce-wordprocessing-1.4.1-10.3.i586.rpm
3389b3f042f62184857839fd7c67cbd7
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/poppler-0.4.2-3.2.i586.rpm
a75a1bacec1403b217cf581b99765fc3
ftp://ftp.suse.com/pub/suse/i386/upda...i586/poppler-devel-0.4.2-3.2.i586.rpm
681b3dcab91a337aeb7f3f0af12bdd0b
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/xpdf-3.00-92.2.i586.rpm
7f32bfdf4bdb028357677ff17b1d9f6f

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/gpdf-2.10.0-4.4.i586.rpm
d8a93bc1adec7f15afb2e8b541488c2b
ftp://ftp.suse.com/pub/suse/i386/upda.../kdegraphics3-pdf-3.4.0-11.5.i586.rpm
f2e7cb3dbc8b436c4c4a867a5c94958c
ftp://ftp.suse.com/pub/suse/i386/upda...ce-wordprocessing-1.3.5-11.3.i586.rpm
cd950553c21d251276ca84ba028a2b9e
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/xpdf-3.00-87.2.i586.rpm
8102a9958b2bc28c0e8a60671f4d519b

SUSE LINUX 9.2:
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/gpdf-0.131-11.10.i586.rpm
df9f74620e84ea4c11b84cfb10e69306
ftp://ftp.suse.com/pub/suse/i386/upda.../kdegraphics3-pdf-3.3.0-13.7.i586.rpm
722e74750d3bf72e605b9d8eb0023c80
ftp://ftp.suse.com/pub/suse/i386/upda...ice-wordprocessing-1.3.3-3.4.i586.rpm
b0b429206f01244d13a9a7d1a16b6143
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/xpdf-3.00-78.11.i586.rpm
1a7a20419afc0d6c4959a15aa1f976d1

SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/gpdf-0.112.1-26.10.i586.rpm
49949f0f26639500de85de9c0dd70df7
ftp://ftp.suse.com/pub/suse/i386/upda...kdegraphics3-pdf-3.2.1-67.16.i586.rpm
acf919d3d0ce4ab1a16da290656677d9
ftp://ftp.suse.com/pub/suse/i386/upda...fice-wordprocessing-1.3-67.4.i586.rpm
94c2dda6e2ea25fe045118d26856a514
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/xpdf-3.00-64.35.i586.rpm
3974f2efa05de1594ceeaa3ad57a6b74

SuSE Linux 9.0:
ftp://ftp.suse.com/pub/suse/i386/upda...ice-wordprocessing-1.2.92-89.i586.rpm
883ba0b73d70a21d6ed897b4b0b3c1a4
ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/xpdf-2.02pl1-150.i586.rpm
86c771eb44dc3833fdbce3bed0716262

-- Power PC Platform --

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/gpdf-2.10.0-12.2.ppc.rpm
bbaf5a0eac9a4d5d2467bc9d77439210
ftp://ftp.suse.com/pub/suse/i386/upda...c/kdegraphics3-pdf-3.4.2-12.2.ppc.rpm
d0484799ace3a8aeeb38c86ce58e85bf
ftp://ftp.suse.com/pub/suse/i386/upda...ice-wordprocessing-1.4.1-10.3.ppc.rpm
363a3440a5dff8ed64bfba1a0cd531ff
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/poppler-0.4.2-3.2.ppc.rpm
430d091aa4c9a1f2c391f552aaaa8c75
ftp://ftp.suse.com/pub/suse/i386/upda...m/ppc/poppler-devel-0.4.2-3.2.ppc.rpm
47d6a93ae2f99f39f55d9afd72f36e94
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/xpdf-3.00-92.2.ppc.rpm
04b7afc835bacd1f02fa192d24815472

-- x86-64 Platform --

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/upda...pm/x86_64/gpdf-2.10.0-12.2.x86_64.rpm
fc2932006570d4c15f030bf43ed09bb0
ftp://ftp.suse.com/pub/suse/i386/upda...degraphics3-pdf-3.4.2-12.2.x86_64.rpm
49700f1c6ed9ffbf77976bcffa35303a
ftp://ftp.suse.com/pub/suse/i386/upda...-wordprocessing-1.4.1-10.3.x86_64.rpm
8799f1a0189347188d19c2a9b20152b3
ftp://ftp.suse.com/pub/suse/i386/upda...m/x86_64/poppler-0.4.2-3.2.x86_64.rpm
61ea84a3c56cbacb29c6dd636483b187
ftp://ftp.suse.com/pub/suse/i386/upda...64/poppler-devel-0.4.2-3.2.x86_64.rpm
07181a86914c6068a2e60283c83bfb71
ftp://ftp.suse.com/pub/suse/i386/upda.../rpm/x86_64/xpdf-3.00-92.2.x86_64.rpm
ce55cb6845c4f584c0b7101b898d8d9d

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/upda...rpm/x86_64/gpdf-2.10.0-4.4.x86_64.rpm
0a68dfd24957d96c06b6952893a7382d
ftp://ftp.suse.com/pub/suse/i386/upda...degraphics3-pdf-3.4.0-11.5.x86_64.rpm
12e673d22f441de69b1e0c4ce5448663
ftp://ftp.suse.com/pub/suse/i386/upda...-wordprocessing-1.3.5-11.3.x86_64.rpm
300c5490408a63405a9e0efab35af15a
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/xpdf-3.00-87.2.x86_64.rpm
6d81863cc8083a5a3cc1a7bae94b7841

SUSE LINUX 9.2:
ftp://ftp.suse.com/pub/suse/i386/upda...pm/x86_64/gpdf-0.131-11.10.x86_64.rpm
66662232ac294a8745a57f685ba44363
ftp://ftp.suse.com/pub/suse/i386/upda...degraphics3-pdf-3.3.0-13.7.x86_64.rpm
da7070a2fff9e8a169d7f3d5151c1d62
ftp://ftp.suse.com/pub/suse/i386/upda...e-wordprocessing-1.3.3-3.4.x86_64.rpm
4308395ca9e996171d3bd56aea06c85b
ftp://ftp.suse.com/pub/suse/i386/upda...rpm/x86_64/xpdf-3.00-78.11.x86_64.rpm
7e903dc92b38b84c52a7b02b9f34cea8

SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/x86_64/up.../x86_64/gpdf-0.112.1-26.10.x86_64.rpm
d38ce78c6436b1f63bc207e16cb21c70
ftp://ftp.suse.com/pub/suse/x86_64/up...egraphics3-pdf-3.2.1-67.16.x86_64.rpm
65594cc258627443e91db9bfaaab972d
ftp://ftp.suse.com/pub/suse/x86_64/up...ce-wordprocessing-1.3-67.4.x86_64.rpm
0aea7880cc737a580c540b4510ce3378
ftp://ftp.suse.com/pub/suse/x86_64/up...rpm/x86_64/xpdf-3.00-64.35.x86_64.rpm
5dc6cbd898fe28a0533b6aae6cac55e6

SuSE Linux 9.0:
ftp://ftp.suse.com/pub/suse/x86_64/up...e-wordprocessing-1.2.92-89.x86_64.rpm
b03b33882aedc36cb42d88ae17370aa5
ftp://ftp.suse.com/pub/suse/x86_64/up...pm/x86_64/xpdf-2.02pl1-150.x86_64.rpm
41c6b26f17f1272302d379cc2c83f5db

-- Sources --

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/gpdf-2.10.0-12.2.src.rpm
7dc880c705ebc6ae4b2a0d9236a8d141
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/poppler-0.4.2-3.2.src.rpm
e98a835e0c0ed817314ded34391a7d13
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/xpdf-3.00-92.2.src.rpm
aedde31d92e0d54d60837c282965a830

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/gpdf-2.10.0-4.4.src.rpm
95dc124c8e7a648111f8f9ff6b13284a
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/xpdf-3.00-87.2.src.rpm
359b372d95dde9bedc52f56fe3f8c405

SUSE LINUX 9.2:
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/gpdf-0.131-11.10.src.rpm
a0dd3601769947d84eae417d9df3a874
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/xpdf-3.00-78.11.src.rpm
5575ff90d0dd66fc6230f75e58ade6ea

SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/gpdf-0.112.1-26.10.src.rpm
3cdaff2b9a6083bc68ae7e7ab150ab95
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/xpdf-3.00-64.35.src.rpm
09494433e9255b6b69a25b253f2b5ce4
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/gpdf-0.112.1-26.10.src.rpm
290c84ee7d0865a3a3205fe8042cbf2d
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/xpdf-3.00-64.35.src.rpm
d643371e4a437f8275e5436f0250840e

SuSE Linux 9.0:
ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/src/xpdf-2.02pl1-150.src.rpm
eaa4940e318b5725d310d58acf16278e
ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/src/xpdf-2.02pl1-150.src.rpm
11bc3011e0c4d74e326ce9b08fb49f4f

Changelog:
2006-01-13: Updated link to "Original Advisory".

Original Advisory:
http://www.novell.com/linux/security/advisories/2006_01_xpdf.html

Other References:
SA18303:
http://secunia.com/advisories/18303/

SA17897:
http://secunia.com/advisories/17897/

SA17920:
http://secunia.com/advisories/17920/

SA18375:
http://secunia.com/advisories/18375/

SA17940:
http://secunia.com/advisories/17940/

SA17908:
http://secunia.com/advisories/17908/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

Today
New advisories: 24
New vulnerabilities: 99
Updated advisories: 26

Moderately // 201 views
Drupal Project Module File Upload and Cross-Site Scripting
Less // 225 views
SmbFTPD Long Command Processing Vulnerability
Less // 266 views
Drupal Project Issue Tracking Module Multiple Vulnerabilities
Less // 247 views
PHP-Fusion Members CV Module "sortby" SQL Injection Vulnerability
Moderately // 268 views
Lasso OpenSSL "DSA_verify()" Spoofing Vulnerability
Moderately // 233 views
Xdg-utils mailcap Command Execution Security Issue
Less // 263 views
FreeBSD update for lukemftpd
Less // 242 views
tnftpd Long Command Processing Vulnerability
Moderately // 355 views
Cisco Global Site Selector DNS Request Denial of Service
Less // 300 views
NTP OpenSSL "EVP_VerifyFinal()" Spoofing Vulnerability

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. Internet Explorer Data Binding Memory Corruption Vulnerability // 56 views
2. Adobe Flash Player Multiple Security Issues and Vulnerabilities // 40 views
3. Sun Java JDK / JRE Multiple Vulnerabilities // 40 views
4. Cisco Global Site Selector DNS Request Denial of Service // 39 views
5. Drupal Project Module File Upload and Cross-Site Scripting // 37 views
6. NTP OpenSSL "EVP_VerifyFinal()" Spoofing Vulnerability // 28 views
7. SmbFTPD Long Command Processing Vulnerability // 24 views
8. Red Hat update for openssl // 23 views
9. Subdreamer Light Global Variables SQL Injection Vulnerability // 23 views
10. Red Hat update for hanterm-xf // 23 views



Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2009