Red Hat Bugzilla – Bug 248194
CVE-2007-3387 xpdf integer overflow
Last modified: 2016-03-04 07:51:57 EST
Maurycy Prodeus discovered an integer overflow flaw in the way xpdf processes
PDF files. It's possible this flaw could be used to execute arbitrary code as
the user running the application using the xpdf source.
Created attachment 159239 [details]
Proposed upstream fix
embargo moved by upstream to Jul 28
krh, these packages are affected (I verified them) because of the patch we
applied to fix CVE-2005-3193.
These issues should now be considered public.
KDE Security Advisory with patches for koffice and kdegraphics:
poppler-0.5.4-8.fc7 has been submitted as an update for Fedora 7
poppler-0.5.4-8.fc7 has been pushed to the Fedora 7 stable repository. If problems still persist, please make note of it in this bug report.
This issue was addressed in:
Red Hat Enterprise Linux: