Scientific Linux Security Update : xpdf on SL4.x i386/x86_64
High Nessus Plugin ID 60712
SynopsisThe remote Scientific Linux host is missing a security update.
DescriptionPetr Gajdos and Christian Kornacker of SUSE reported a buffer overflow flaw in Xpdf's Type 1 font parser. A specially crafted PDF file with an embedded Type 1 font could cause Xpdf to crash or, possibly, execute arbitrary code when opened. (CVE-2009-4035)
SolutionUpdate the affected xpdf package.