Mandrake Linux Security Advisory : poppler (MDKSA-2006:030)
High Nessus Plugin ID 20851
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionHeap-based buffer overflow in Splash.cc in xpdf allows attackers to cause a denial of service and possibly execute arbitrary code via crafted splash images that produce certain values that exceed the width or height of the associated bitmap.
Poppler uses a copy of the xpdf code and as such has the same issues.
The updated packages have been patched to correct this issue.
SolutionUpdate the affected packages.