VDB
ANCHORE-2004-0888
ANCHORE-2004-0888
PUBLISHED
Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0889.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| redhat | enterprise_linux | 3.0, 3.0, 2.1 |
| redhat | linux_advanced_workstation | 2.1, 2.1, 2.1 |
| redhat | enterprise_linux_desktop | 3.0, 3.0, 3.0 |
| gnome | gpdf | 0.131, 0.112, 0.131 |
| ubuntu | ubuntu_linux | 4.1, 4.1, 4.1 |
| kde | kpdf | 3.2, 3.2, 3.2 |
| kde | koffice | *, *, 1.3.2 |
| redhat | fedora_core | core_2.0, core_2.0, core_2.0 |
| xpdf | xpdf | 1.0a, 2.1, 0.90 |
| suse | suse_linux | 8.0, 9.2, 9.2 |
| tetex | tetex | 2.0.2, 2.0.1, 2.0 |
| debian | debian_linux | 3.0, 3.0, 3.0 |
| easy_software_products | cups | 1.1.19, 1.1.19_rc5, 1.1.20 |
| kde | kde | 3.2.3, 3.3, 3.3.1 |
| pdftohtml | pdftohtml | 0.32a, 0.32b, 0.33 |
Timeline
- Oct 26, 2004 CVE Published
- Aug 8, 2024 CVE Updated
- Mar 13, 2026 Distribution Patch
- Mar 13, 2026 Distribution Patch
- Mar 13, 2026 Distribution Patch
- Mar 13, 2026 Distribution Patch
References
- http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000886 url
- http://marc.info/?l=bugtraq&m=109880927526773&w=2 url
- http://marc.info/?l=bugtraq&m=110815379627883&w=2 url
- http://www.debian.org/security/2004/dsa-573 url
- http://www.debian.org/security/2004/dsa-581 url
- http://www.debian.org/security/2004/dsa-599 url
- http://www.gentoo.org/security/en/glsa/glsa-200410-20.xml url
- http://www.gentoo.org/security/en/glsa/glsa-200410-30.xml url
- http://www.mandriva.com/security/advisories?name=MDKSA-2004:113 url
- http://www.mandriva.com/security/advisories?name=MDKSA-2004:114 url
- http://www.mandriva.com/security/advisories?name=MDKSA-2004:115 url
- http://www.mandriva.com/security/advisories?name=MDKSA-2004:116 url
- http://www.redhat.com/support/errata/RHSA-2004-543.html url
- http://www.redhat.com/support/errata/RHSA-2004-592.html url
- http://www.redhat.com/support/errata/RHSA-2005-066.html url
- http://www.redhat.com/support/errata/RHSA-2005-354.html url
- http://www.securityfocus.com/bid/11501 url
- https://bugzilla.fedora.us/show_bug.cgi?id=2353 url
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17818 url
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9714 url
…and 1 more