This update fixes several PDF handling security issues.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

A buffer overflow in the xpdf code contained in gpdf could be exploited by attackers to potentially execute arbitrary code (CVE-2007-4352, CVE-2007-5392, CVE-2007-5393).

Alin Rad Pop discovered several buffer overflows in the Poppler PDF library, which could allow the execution of arbitrary code if a malformed PDF file is opened.

Updated poppler packages that fix several security issues are now available for Red Hat Enterprise Linux 5.

This update has been rated as having important security impact by the Red Hat Security Response Team.

Poppler is a PDF rendering library, used by applications such as evince.

Alin Rad Pop discovered several flaws in the handling of PDF files. An attacker could create a malicious PDF file that would cause an application linked with poppler to crash, or potentially execute arbitrary code when opened. (CVE-2007-4352, CVE-2007-5392, CVE-2007-5393)

Users are advised to upgrade to these updated packages, which contain backported patches to resolve these issues.

Maurycy Prodeus found an integer overflow vulnerability in the way various PDF viewers processed PDF files. An attacker could create a malicious PDF file that could cause pdftohtml to crash and possibly execute arbitrary code open a user opening the file.

This update provides packages which are patched to prevent these issues.

- fix dvips -z buffer overflow with long href (#368591)

    - fix insecure usage of temporary file in dviljk       (#368611, #368641)

  - update License and BuildRoot tags

    - fix t1lib flaw CVE-2007-4033 (#352271)

    - fix CVE-2007-4352 CVE-2007-5392 CVE-2007-5393, various       xpdf flaws (#345121)

  - xdvi won't segfault if DVI file contains character which     is not present in font (#243630)

  - enable compilation with ccache

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

A flaw in the t1lib library where an attacker could create a malicious file that would cause tetex to crash or possibly execute arbitrary code when opened (CVE-2007-4033).

Alin Rad Pop found several flaws in how PDF files are handled in tetex. An attacker could create a malicious PDF file that would cause tetex to crash or potentially execute arbitrary code when opened (CVE-2007-4352, CVE-2007-5392, CVE-2007-5393).

A stack-based buffer overflow in dvips in tetex allows for user-assisted attackers to execute arbitrary code via a DVI file with a long href tag (CVE-2007-5935).

A vulnerability in dvips in tetex allows local users to obtain sensitive information and modify certain data by creating certain temporary files before they are processed by dviljk, which can then be read or modified in place (CVE-2007-5936).

Multiple buffer overflows in dviljk in tetext may allow users-assisted attackers to execute arbitrary code via a crafted DVI input file (CVE-2007-5937).

The updated packages have been patched to correct this issue.

Updated tetex packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5.

This update has been rated as having important security impact by the Red Hat Security Response Team.

TeTeX is an implementation of TeX. TeX takes a text file and a set of formatting commands as input, and creates a typesetter-independent DeVice Independent (dvi) file as output.

Alin Rad Pop discovered several flaws in the handling of PDF files. An attacker could create a malicious PDF file that would cause TeTeX to crash or potentially execute arbitrary code when opened.
(CVE-2007-4352, CVE-2007-5392, CVE-2007-5393)

A flaw was found in the t1lib library, used in the handling of Type 1 fonts. An attacker could create a malicious file that would cause TeTeX to crash, or potentially execute arbitrary code when opened.
(CVE-2007-4033)

Users are advised to upgrade to these updated packages, which contain backported patches to resolve these issues.

Updated xpdf packages that fix several security issues are now available for Red Hat Enterprise Linux 3.

This update has been rated as having important security impact by the Red Hat Security Response Team.

Xpdf is an X Window System-based viewer for Portable Document Format (PDF) files.

Alin Rad Pop discovered several flaws in the handling of PDF files. An attacker could create a malicious PDF file that would cause Xpdf to crash, or potentially execute arbitrary code when opened.
(CVE-2007-4352, CVE-2007-5392, CVE-2007-5393)

A flaw was found in the t1lib library, used in the handling of Type 1 fonts. An attacker could create a malicious file that would cause Xpdf to crash, or potentially execute arbitrary code when opened.
(CVE-2007-4033)

Users are advised to upgrade to these updated packages, which contain backported patches to resolve these issues.

ID	Name	Product	Family	Published	Updated	Severity
28162	Fedora 7 : cups-1.2.12-7.fc7 (2007-3100)	Nessus	Fedora Local Security Checks	11/12/2007	1/11/2021	high
28170	openSUSE 10 Security Update : gpdf (gpdf-4651)	Nessus	SuSE Local Security Checks	11/12/2007	1/14/2021	high
30188	Debian DSA-1480-1 : poppler - several vulnerabilities	Nessus	Debian Local Security Checks	2/6/2008	1/4/2021	high
27837	RHEL 5 : poppler (RHSA-2007:1026)	Nessus	Red Hat Local Security Checks	11/8/2007	1/14/2021	high
25892	Mandrake Linux Security Advisory : pdftohtml (MDKSA-2007:160)	Nessus	Mandriva Local Security Checks	8/15/2007	1/6/2021	high
28314	Fedora Core 6 : tetex-3.0-36.fc6 (2007-750)	Nessus	Fedora Local Security Checks	11/26/2007	1/11/2021	high
28324	Mandrake Linux Security Advisory : tetex (MDKSA-2007:230)	Nessus	Mandriva Local Security Checks	11/26/2007	1/6/2021	high
36664	CentOS 4 : tetex (CESA-2007:1027)	Nessus	CentOS Local Security Checks	4/23/2009	1/4/2021	high
37859	CentOS 3 : xpdf (CESA-2007:1030)	Nessus	CentOS Local Security Checks	4/23/2009	1/4/2021	high

Detections

Analytics

Plugins Search

high

high

high

high

high

high

high

high

high