Vulnerability Note VU#196617
Xpdf and poppler contain multiple vulnerabilities in the processing of JBIG2 data
Overview
Xpdf and poppler contain multiple vulnerabilities, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.
Description
Xpdf is an open source viewer for Portable Document Format (PDF) files. Several PDF viewing applications and libraries, such as poppler, are based on the Xpdf code. Xpdf contains multiple vulnerabilities related to the handling of PDF files that contain JBIG2 data. The vulnerabilities include, but are not limited to, a buffer overflow, an integer overflow, a null pointer dereference, and an infinite loop. |
Impact
By convincing a user to open a malicious PDF file, an attacker may be able to execute code or cause a vulnerable PDF viewer to crash. The PDF could be emailed as an attachment or hosted on a website. |
Solution
Apply an update These issues are addressed in Xpdf 3.02-pl3 and poppler 0.10.6. Please check with your vendor for software updates. |
Systems Affected (Learn More)
| Vendor | Status | Date Notified | Date Updated |
|---|---|---|---|
| Apple Computer, Inc. | Affected | 23 Feb 2009 | 13 May 2009 |
| Debian GNU/Linux | Affected | 06 Apr 2009 | 06 May 2009 |
| Fedora Project | Affected | 06 Apr 2009 | 16 Apr 2009 |
| Gentoo Linux | Affected | - | 16 Apr 2009 |
| Mandriva S. A. | Affected | 06 Apr 2009 | 29 Apr 2009 |
| Novell, Inc. | Affected | 12 Mar 2009 | 16 Apr 2009 |
| Poppler | Affected | - | 16 Apr 2009 |
| Red Hat, Inc. | Affected | 12 Mar 2009 | 17 Apr 2009 |
| Research in Motion (RIM) | Affected | 31 Mar 2009 | 16 Apr 2009 |
| Slackware Linux Inc. | Affected | 06 Apr 2009 | 16 Apr 2009 |
| SUSE Linux | Affected | 30 Mar 2009 | 16 Apr 2009 |
| Turbolinux | Affected | 06 Apr 2009 | 16 Apr 2009 |
| Ubuntu | Affected | 12 Mar 2009 | 16 Apr 2009 |
| xpdf | Affected | 23 Feb 2009 | 16 Apr 2009 |
| Artifex Software, Inc. | Unknown | 23 Feb 2009 | 23 Feb 2009 |
CVSS Metrics (Learn More)
| Group | Score | Vector |
|---|---|---|
| Base | 9.0 | AV:N/AC:M/Au:N/C:C/I:C/A:P |
| Temporal | 7.0 | E:POC/RL:OF/RC:C |
| Environmental | 7.0 | CDP:ND/TD:ND/CR:ND/IR:ND/AR:ND |
References
- http://www.us-cert.gov/cas/tips/ST04-010.html
- http://www.cert.org/tech_tips/securing_browser/
- http://cgit.freedesktop.org/poppler/poppler/commit/?id=9f1312f3d7dfa7e536606a7c7296b7c876b11c00
- ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl3.patch
- http://www.ubuntu.com/usn/usn-759-1
- http://blackberry.com/btsc/KB17953
- http://rhn.redhat.com/errata/RHSA-2009-0429.html
- http://rhn.redhat.com/errata/RHSA-2009-0431.html
- http://www.mandriva.com/en/security/advisories?name=MDVSA-2009:101
- http://www.debian.org/security/2009/dsa-1790
- http://support.apple.com/kb/HT3549
- http://secunia.com/advisories/34291/
- http://www.securitytracker.com/alerts/2009/Apr/1022072.html
- http://www.securityfocus.com/bid/34568
- http://jvn.jp/cert/JVNVU196617/index.html
Credit
These vulnerabilities were reported by Will Dormann of the CERT/CC.
This document was written by Will Dormann.
Other Information
- CVE IDs: CVE-2009-0799 CVE-2009-0800 CVE-2009-1179 CVE-2009-1180 CVE-2009-1181 CVE-2009-1182 CVE-2009-1183 CVE-2009-1187 CVE-2009-1188
- Date Public: 16 Apr 2009
- Date First Published: 16 Apr 2009
- Date Last Updated: 28 Mar 2012
- Severity Metric: 5.01
- Document Revision: 41
Feedback
If you have feedback, comments, or additional information about this vulnerability, please send us email.
View Notes By
Report a Vulnerability
Please use the Vulnerability Reporting Form to report a vulnerability. Alternatively, you can send us email. Be sure to read our vulnerability disclosure policy.