Описание
Integer overflow in the JBIG2 decoding feature in Poppler before 0.10.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to CairoOutputDev (CairoOutputDev.cc).
Integer overflow in the JBIG2 decoding feature in Poppler before 0.10.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to CairoOutputDev (CairoOutputDev.cc).
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2009-1187
- https://access.redhat.com/errata/RHSA-2009:0480
- https://access.redhat.com/security/cve/CVE-2009-1187
- https://bugs.launchpad.net/ubuntu/+source/poppler/+bug/361875
- https://bugzilla.redhat.com/show_bug.cgi?id=495906
- https://exchange.xforce.ibmcloud.com/vulnerabilities/50184
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10292
- https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00567.html
- https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01277.html
- https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01291.html
- http://bugs.gentoo.org/show_bug.cgi?id=263028#c16
- http://poppler.freedesktop.org/releases.html
- http://secunia.com/advisories/34746
- http://secunia.com/advisories/35064
- http://secunia.com/advisories/35618
- http://wiki.rpath.com/Advisories:rPSA-2009-0059
- http://www.kb.cert.org/vuls/id/196617
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:087
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:175
- http://www.redhat.com/support/errata/RHSA-2009-0480.html
- http://www.securityfocus.com/archive/1/502761/100/0/threaded
- http://www.securityfocus.com/bid/34568
- http://www.vupen.com/english/advisories/2009/1076
- http://www.vupen.com/english/advisories/2010/1040
EPSS
CVE ID
Связанные уязвимости
Integer overflow in the JBIG2 decoding feature in Poppler before 0.10.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to CairoOutputDev (CairoOutputDev.cc).
Integer overflow in the JBIG2 decoding feature in Poppler before 0.10.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to CairoOutputDev (CairoOutputDev.cc).
Integer overflow in the JBIG2 decoding feature in Poppler before 0.10.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to CairoOutputDev (CairoOutputDev.cc).
Integer overflow in the JBIG2 decoding feature in Poppler before 0.10. ...
EPSS