CVE Reference: CVE-2009-0166

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2009-0166

Description:
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers a free of uninitialized memory.

CVE Status:
Candidate

References:

SUSE
  http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html
  http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.html
  http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00011.html

ST
  1022073

SLACKWARE
  http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.578477

SAID
  Secunia Advisory: SA35685
  Secunia Advisory: SA35618
  Secunia Advisory: SA35064
  Secunia Advisory: SA34991
  Secunia Advisory: SA35065
  Secunia Advisory: SA35037
  Secunia Advisory: SA34963
  Secunia Advisory: SA34756
  Secunia Advisory: SA34959
  Secunia Advisory: SA34852
  Secunia Advisory: SA34481
  Secunia Advisory: SA34291
  Secunia Advisory: SA34755

REDHAT
  http://www.redhat.com/support/errata/RHSA-2009-0480.html
  http://www.redhat.com/support/errata/RHSA-2009-0431.html
  http://rhn.redhat.com/errata/RHSA-2009-0458.html
  http://www.redhat.com/support/errata/RHSA-2009-0429.html
  http://www.redhat.com/support/errata/RHSA-2009-0430.html

OVAL
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9778

MANDRIVA
  http://www.mandriva.com/security/advisories?name=MDVSA-2009:101
  http://www.mandriva.com/security/advisories?name=MDVSA-2010:087

GENTOO
  http://security.gentoo.org/glsa/glsa-200904-20.xml

FEDORA

DEBIAN
  http://www.debian.org/security/2009/dsa-1793
  http://www.debian.org/security/2009/dsa-1790

CONFIRM
  http://wiki.rpath.com/Advisories:rPSA-2009-0061

BUGTRAQ
  http://www.securityfocus.com/archive/1/archive/1/502750/100/0/threaded

BID
  34568


Return to the previous page.