CVE-2009-1182

HIGH

Description

Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file.

ID	Name	Product	Family	Severity
70309	GLSA-201310-03 : Poppler: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	critical
68039	Oracle Linux 5 : tetex (ELSA-2010-0400)	Nessus	Oracle Linux Local Security Checks	high
68038	Oracle Linux 4 : tetex (ELSA-2010-0399)	Nessus	Oracle Linux Local Security Checks	high
67858	Oracle Linux 5 : poppler (ELSA-2009-0480)	Nessus	Oracle Linux Local Security Checks	high
67852	Oracle Linux 4 : gpdf (ELSA-2009-0458)	Nessus	Oracle Linux Local Security Checks	high
67846	Oracle Linux 4 : kdegraphics (ELSA-2009-0431)	Nessus	Oracle Linux Local Security Checks	high
67845	Oracle Linux 3 / 4 : xpdf (ELSA-2009-0430)	Nessus	Oracle Linux Local Security Checks	high
67844	Oracle Linux 4 / 5 : cups (ELSA-2009-0429)	Nessus	Oracle Linux Local Security Checks	high
60791	Scientific Linux Security Update : tetex on SL5.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
60790	Scientific Linux Security Update : tetex on SL4.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
60584	Scientific Linux Security Update : poppler on SL5.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
60576	Scientific Linux Security Update : gpdf on SL4.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
60571	Scientific Linux Security Update : xpdf on SL3.x, SL4.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
60569	Scientific Linux Security Update : kdegraphics on SL4.x, SL5.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
60568	Scientific Linux Security Update : cups on SL4.x, SL5.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
46760	CentOS 5 : tetex (CESA-2010:0400)	Nessus	CentOS Local Security Checks	high
46309	RHEL 5 : tetex (RHSA-2010:0400)	Nessus	Red Hat Local Security Checks	high
46308	RHEL 4 : tetex (RHSA-2010:0399)	Nessus	Red Hat Local Security Checks	high
46257	CentOS 4 : tetex (CESA-2010:0399)	Nessus	CentOS Local Security Checks	high
44995	Mandriva Linux Security Advisory : poppler (MDVSA-2010:055)	Nessus	Mandriva Local Security Checks	high
43748	CentOS 5 : poppler (CESA-2009:0480)	Nessus	CentOS Local Security Checks	high
43613	Mandriva Linux Security Advisory : kde (MDVSA-2009:346)	Nessus	Mandriva Local Security Checks	critical
42181	Mandriva Linux Security Advisory : cups (MDVSA-2009:282-1)	Nessus	Mandriva Local Security Checks	critical
42030	openSUSE 10 Security Update : poppler (poppler-6319)	Nessus	SuSE Local Security Checks	critical
41602	SuSE 10 Security Update : xpdf (ZYPP Patch Number 6177)	Nessus	SuSE Local Security Checks	critical
41578	SuSE 10 Security Update : poppler (ZYPP Patch Number 6315)	Nessus	SuSE Local Security Checks	critical
41530	SuSE 10 Security Update : kdegraphics3 (ZYPP Patch Number 6283)	Nessus	SuSE Local Security Checks	critical
41494	SuSE 10 Security Update : CUPS (ZYPP Patch Number 6174)	Nessus	SuSE Local Security Checks	critical
41427	SuSE 11 Security Update : libpoppler4 (SAT Patch Number 1034)	Nessus	SuSE Local Security Checks	critical
41292	SuSE9 Security Update : CUPS (YOU Patch Number 12396)	Nessus	SuSE Local Security Checks	critical
40324	openSUSE Security Update : xpdf (xpdf-793)	Nessus	SuSE Local Security Checks	critical
40267	openSUSE Security Update : libpoppler4 (libpoppler4-1032)	Nessus	SuSE Local Security Checks	critical
40246	openSUSE Security Update : kdegraphics3 (kdegraphics3-819)	Nessus	SuSE Local Security Checks	critical
40159	openSUSE Security Update : xpdf (xpdf-793)	Nessus	SuSE Local Security Checks	critical
40042	openSUSE Security Update : libpoppler3 (libpoppler3-1035)	Nessus	SuSE Local Security Checks	critical
40005	openSUSE Security Update : kdegraphics3 (kdegraphics3-819)	Nessus	SuSE Local Security Checks	critical
39844	Fedora 11 : poppler-0.10.7-2.fc11 (2009-6972)	Nessus	Fedora Local Security Checks	high
39548	Fedora 9 : poppler-0.8.7-2.fc9 (2009-6982)	Nessus	Fedora Local Security Checks	high
39547	Fedora 10 : poppler-0.8.7-6.fc10 (2009-6973)	Nessus	Fedora Local Security Checks	high
38901	CentOS 4 : gpdf (CESA-2009:0458)	Nessus	CentOS Local Security Checks	high
38898	CentOS 4 / 5 : kdegraphics (CESA-2009:0431)	Nessus	CentOS Local Security Checks	high
38897	CentOS 4 / 5 : cups (CESA-2009:0429)	Nessus	CentOS Local Security Checks	high
38769	RHEL 5 : poppler (RHSA-2009:0480)	Nessus	Red Hat Local Security Checks	high
38720	Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / 12.1 / 12.2 / 9.1 / current : xpdf (SSA:2009-129-01)	Nessus	Slackware Local Security Checks	critical
38703	Debian DSA-1793-1 : kdegraphics - multiple vulnerabilities	Nessus	Debian Local Security Checks	critical
38692	Debian DSA-1790-1 : xpdf - multiple vulnerabilities	Nessus	Debian Local Security Checks	critical
38660	RHEL 4 : gpdf (RHSA-2009:0458)	Nessus	Red Hat Local Security Checks	high
38645	openSUSE 10 Security Update : kdegraphics3 (kdegraphics3-6211)	Nessus	SuSE Local Security Checks	critical
38204	Mandriva Linux Security Advisory : xpdf (MDVSA-2009:101)	Nessus	Mandriva Local Security Checks	critical
38182	openSUSE 10 Security Update : xpdf (xpdf-6182)	Nessus	SuSE Local Security Checks	critical
37844	openSUSE 10 Security Update : cups (cups-6172)	Nessus	SuSE Local Security Checks	critical
36635	Ubuntu 6.06 LTS / 8.04 LTS / 8.10 : poppler vulnerabilities (USN-759-1)	Nessus	Ubuntu Local Security Checks	high
36261	Fedora 10 : xpdf-3.02-13.fc10 (2009-3820)	Nessus	Fedora Local Security Checks	high
36210	Fedora 9 : xpdf-3.02-13.fc9 (2009-3794)	Nessus	Fedora Local Security Checks	high
36193	FreeBSD : xpdf -- multiple vulnerabilities (a21037d5-2c38-11de-ab3b-0017a4cccfc6)	Nessus	FreeBSD Local Security Checks	high
36188	CentOS 3 / 4 : xpdf (CESA-2009:0430)	Nessus	CentOS Local Security Checks	high
36181	RHEL 4 / 5 : kdegraphics (RHSA-2009:0431)	Nessus	Red Hat Local Security Checks	high
36180	RHEL 3 / 4 : xpdf (RHSA-2009:0430)	Nessus	Red Hat Local Security Checks	high
36179	RHEL 4 / 5 : cups (RHSA-2009:0429)	Nessus	Red Hat Local Security Checks	high

CVE-2009-1182

Description

References

Details

Risk Information

CVSS v2.0