CVE-2005-3624
CVE-2005-3624
The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integer underflows.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.15/SCOSA-2006.15.txtftp://patches.sgi.com/support/free/security/advisories/20051201-01-Uftp://patches.sgi.com/support/free/security/advisories/20060101-01-Uftp://patches.sgi.com/support/free/security/advisories/20060201-01-Uhttp://lists.suse.com/archive/suse-security-announce/2006-Jan/0001.htmlhttp://rhn.redhat.com/errata/RHSA-2006-0177.htmlhttp://scary.beasts.org/security/CESA-2005-003.txthttp://secunia.com/advisories/18147http://secunia.com/advisories/18303http://secunia.com/advisories/18312http://secunia.com/advisories/18313http://secunia.com/advisories/18329