Debian DSA-1941-1 : poppler - several vulnerabilities
High Nessus Plugin ID 44806
SynopsisThe remote Debian host is missing a security-related update.
DescriptionSeveral integer overflows, buffer overflows and memory allocation errors were discovered in the Poppler PDF rendering library, which may lead to denial of service or the execution of arbitrary code if a user is tricked into opening a malformed PDF document.
An update for the old stable distribution (etch) will be issued soon as version 0.4.5-5.1etch4.
SolutionUpgrade the poppler packages.
For the stable distribution (lenny), these problems have been fixed in version 0.8.7-3.