-
Committer:
Bazaar Package Importer
-
Author(s):
Jonathan Riddell
-
Date:
2007-08-02 17:00:06 UTC
-
Revision ID:
james.westby@ubuntu.com-20070802170006-76gbomb4udh5hwp2
Tags: 1:1.6.3-0ubuntu3
* SECURITY UPDATE: xpdf buffer overflow
kpdf, the KDE pdf viewer, shares code with xpdf. xpdf contains
a vulnerability that can cause a stack based buffer overflow
via a PDF file that exploits an integer overflow in
StreamPredictor::StreamPredictor().
* Add kubuntu_01_xpdf-CVE-2007-3387.diff
fixes input data check in kpdf/xpdf/xpdf/Stream.cc
* References
http://www.kde.org/info/security/advisory-20070730-1.txt
CVE-2007-3387