Products
Solutions
Customers
Partner
Resources
Company
Careers
Community

CVE Reference: CVE-2009-0147

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2009-0147

Description:
Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2Stream::readSymbolDictSeg, (2) JBIG2Stream::readSymbolDictSeg, and (3) JBIG2Stream::readGenericBitmap.

CVE Status:
Candidate

References:

SUSE
  http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html
  http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.html
  http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00011.html

ST
  1022073

SLACKWARE
  http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.578477

SAID
  Secunia Advisory: SA35685
  Secunia Advisory: SA35618
  Secunia Advisory: SA35064
  Secunia Advisory: SA34991
  Secunia Advisory: SA35074
  Secunia Advisory: SA35065
  Secunia Advisory: SA35037
  Secunia Advisory: SA34963
  Secunia Advisory: SA34959
  Secunia Advisory: SA34756
  Secunia Advisory: SA34852
  Secunia Advisory: SA34481
  Secunia Advisory: SA34291
  Secunia Advisory: SA34755

REDHAT
  http://rhn.redhat.com/errata/RHSA-2009-0458.html
  http://www.redhat.com/support/errata/RHSA-2009-0480.html
  http://www.redhat.com/support/errata/RHSA-2009-0431.html
  http://www.redhat.com/support/errata/RHSA-2009-0430.html
  http://www.redhat.com/support/errata/RHSA-2009-0429.html

OVAL
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9941

MANDRIVA
  http://www.mandriva.com/security/advisories?name=MDVSA-2010:087
  http://www.mandriva.com/security/advisories?name=MDVSA-2009:101

GENTOO
  http://security.gentoo.org/glsa/glsa-200904-20.xml

FEDORA

DEBIAN
  http://www.debian.org/security/2009/dsa-1790
  http://www.debian.org/security/2009/dsa-1793

CONFIRM
  http://support.apple.com/kb/HT3639
  http://support.apple.com/kb/HT3549
  http://wiki.rpath.com/Advisories:rPSA-2009-0061
  http://bugs.gentoo.org/show_bug.cgi?id=263028
  http://wiki.rpath.com/Advisories:rPSA-2009-0059

CERT
  http://www.us-cert.gov/cas/techalerts/TA09-133A.html

BUGTRAQ
  http://www.securityfocus.com/archive/1/archive/1/502750/100/0/threaded
  http://www.securityfocus.com/archive/1/archive/1/502761/100/0/threaded

BID
  34568

APPLE
  http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html
  http://lists.apple.com/archives/security-announce/2009/May/msg00002.html


Return to the previous page.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability