CVE-2009-1187
CVE-2009-1187
Integer overflow in the JBIG2 decoding feature in Poppler before 0.10.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to CairoOutputDev (CairoOutputDev.cc).
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://bugs.gentoo.org/show_bug.cgi?id=263028#c16http://poppler.freedesktop.org/releases.htmlhttps://bugs.launchpad.net/ubuntu/+source/poppler/+bug/361875http://secunia.com/advisories/34746http://secunia.com/advisories/35064http://secunia.com/advisories/35618https://exchange.xforce.ibmcloud.com/vulnerabilities/50184https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10292https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00567.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-June/msg01277.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-June/msg01291.htmlhttp://wiki.rpath.com/Advisories:rPSA-2009-0059