[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#444014: koffice: CVE-2007-5049 stack based buffer overflow

Package: koffice
Severity: grave
Tags: security
Justification: user security hole

the following CVE (Common Vulnerabilities & Exposures) id was
published for poppler.

| Stack-based buffer overflow in the StreamPredictor::getNextLine
| function in xpdf, as used in (1) poppler before 0.5.91, (2) gpdf, (3)
| kpdf, (4) kdegraphics, (5) CUPS, and other products, might allow
| remote attackers to execute arbitrary code via a crafted PDF file, a
| different vulnerability than CVE-2007-3387.

If you fix this vulnerability please also include the CVE id
in your changelog entry.

You can find a patch on:

For further information:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5049


Reply to: