drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mangelnde Eingabeprüfung in xpdf (Fedora Core 3)
| Name: |
Mangelnde Eingabeprüfung in xpdf (Fedora Core 3)
|
|
| ID: |
FEDORA-2005-730 |
|
| Distribution: |
Fedora |
|
| Plattformen: |
Fedora Core 3 |
|
| Datum: |
Mo, 15. August 2005, 13:00 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2097 |
|
Originalnachricht |
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2005-730
2005-08-15
---------------------------------------------------------------------
Product : Fedora Core 3
Name : xpdf
Version : 3.00
Release : 10.6.FC3
Summary : A PDF file viewer for the X Window System.
Description :
Xpdf is an X Window System based viewer for Portable Document Format
(PDF) files. Xpdf is a small and efficient program which uses
standard X fonts.
---------------------------------------------------------------------
Update Information:
A flaw was discovered in Xpdf in that an attacker could
construct a carefully crafted PDF file that would cause Xpdf
to consume all available disk space in /tmp when opened. The
Common Vulnerabilities and Exposures project assigned the name
CAN-2005-2097 to this issue.
Users of xpdf should upgrade to this updated package, which
contains a backported patch to resolve this issue.
---------------------------------------------------------------------
* Wed Jul 27 2005 Than Ngo <than@redhat.com> 1:3.00-10.6.FC3
- better patch to fix CAN-2005-2097, #163918
* Tue Jul 26 2005 Than Ngo <than@redhat.com> 1:3.00-10.5.FC3
- backport patch to fix xpdf DoS, CAN-2005-2097, #163918
- fix xpdf crash #163807
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/
f0fa9a37ace898d04be68f16b5a7bb14 SRPMS/xpdf-3.00-10.6.FC3.src.rpm
405fdeddfd2ca96646fcb2ae605f1c59 x86_64/xpdf-3.00-10.6.FC3.x86_64.rpm
f577bca35f06c9c74460ffad33665614
x86_64/debug/xpdf-debuginfo-3.00-10.6.FC3.x86_64.rpm
80095ec93707eb9b74872f9b49d1a99a i386/xpdf-3.00-10.6.FC3.i386.rpm
14798c621432d77e3a41ec594a47f545
i386/debug/xpdf-debuginfo-3.00-10.6.FC3.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
--
fedora-announce-list mailing list
fedora-announce-list@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-announce-list
|
|
|
|
