CVE-2009-0195
Published: 04/23/2009 17:30:01
Heap-based buffer overflow in Xpdf 3.02pl2 and earlier, CUPS 1.3.9, and probably other products, allows remote attackers to execute arbitrary code via a PDF file with crafted JBIG2 symbol dictionary segments.
MEDIUM
CVSS v2: 6.8
CVSS v2: 6.8
Status
| DocFilters Release | Package | State | Justification | Comment |
|---|---|---|---|---|
| 25.1 | xpdf (4.05) | Not Affected | Code Not Present | 4.05 does not match CVE configuration. |
| 24.4 | xpdf (4.05) | Not Affected | Code Not Present | 4.05 does not match CVE configuration. |
| 24.4.0 | xpdf (4.05) | Not Affected | Code Not Present | 4.05 does not match CVE configuration. |
| 24.3 | xpdf (4.05) | Not Affected | Code Not Present | 4.05 does not match CVE configuration. |
| 24.2.1 | xpdf (4.05) | Not Affected | Code Not Present | 4.05 does not match CVE configuration. |
| 24.2 | xpdf (4.05) | Not Affected | Code Not Present | 4.05 does not match CVE configuration. |
| 24.1 | xpdf (3.02) | Resolved | Code Not Present | Patched applied from about:blank |
| 23.3 | xpdf (3.02) | Resolved | Code Not Present | Patched applied from about:blank |
| 23.2.1 | xpdf (3.02) | Resolved | Code Not Present | Patched applied from about:blank |
| 23.2 | xpdf (3.02) | Resolved | Code Not Present | Patched applied from about:blank |
| 23.1 | xpdf (3.02) | Resolved | Code Not Present | Patched applied from about:blank |