CVE-2009-1180
CVE-2009-1180
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a free of invalid data.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00011.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.htmlhttp://poppler.freedesktop.org/releases.htmlhttp://rhn.redhat.com/errata/RHSA-2009-0458.htmlhttps://bugzilla.redhat.com/show_bug.cgi?id=495892http://secunia.com/advisories/34291http://secunia.com/advisories/34481http://secunia.com/advisories/34746http://secunia.com/advisories/34755http://secunia.com/advisories/34756http://secunia.com/advisories/34852