Buffer overflow in the JBIG2Bitmap::JBIG2Bitmap function in JBIG2Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via unknown attack vectors.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Xpdf | Xpdf | * | * |
| Red Hat Enterprise Linux 3 | RedHat | xpdf-1:2.02-9.8 | * |
| Red Hat Enterprise Linux 3 | RedHat | cups-1:1.1.17-13.3.34 | * |
| Red Hat Enterprise Linux 3 | RedHat | tetex-0:1.0.7-67.9 | * |
| Red Hat Enterprise Linux 4 | RedHat | xpdf-1:3.00-11.10 | * |
| Red Hat Enterprise Linux 4 | RedHat | gpdf-0:2.8.2-7.3 | * |
| Red Hat Enterprise Linux 4 | RedHat | kdegraphics-7:3.3.1-3.6 | * |
| Red Hat Enterprise Linux 4 | RedHat | cups-1:1.1.22-0.rc1.9.9 | * |
| Red Hat Enterprise Linux 4 | RedHat | tetex-0:2.0.2-22.EL4.7 | * |
| Gpdf | Ubuntu | dapper | * |
| Gpdf | Ubuntu | edgy | * |
| Kdegraphics | Ubuntu | dapper | * |
| Kdegraphics | Ubuntu | devel | * |
| Kdegraphics | Ubuntu | edgy | * |
| Kdegraphics | Ubuntu | feisty | * |
| Koffice | Ubuntu | dapper | * |
| Koffice | Ubuntu | devel | * |
| Koffice | Ubuntu | edgy | * |
| Koffice | Ubuntu | feisty | * |
References
- ftp://patches.sgi.com/support/free/security/advisories/20060201-01-U
- http://lists.suse.com/archive/suse-security-announce/2006-Jan/0001.html
- http://secunia.com/advisories/18147
- http://secunia.com/advisories/18380
- http://secunia.com/advisories/18385
- http://secunia.com/advisories/18387
- http://secunia.com/advisories/18389
- http://secunia.com/advisories/18398
- http://secunia.com/advisories/18407
- http://secunia.com/advisories/18416
- http://secunia.com/advisories/18428
- http://secunia.com/advisories/18436
- http://secunia.com/advisories/18534
- http://secunia.com/advisories/18582
- http://secunia.com/advisories/18674
- http://secunia.com/advisories/18675
- http://secunia.com/advisories/18679
- http://secunia.com/advisories/18908
- http://secunia.com/advisories/18913
- http://secunia.com/advisories/19230
- http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2006\u0026m=slackware-security.472683
- http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2006\u0026m=slackware-security.474747
- http://www.debian.org/security/2005/dsa-931
- http://www.debian.org/security/2005/dsa-932
- http://www.debian.org/security/2005/dsa-937
- http://www.debian.org/security/2005/dsa-938
- http://www.debian.org/security/2005/dsa-940
- http://www.debian.org/security/2006/dsa-936
- http://www.debian.org/security/2006/dsa-950
- http://www.debian.org/security/2006/dsa-961
- http://www.debian.org/security/2006/dsa-962
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:010
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:011
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:012
- http://www.redhat.com/support/errata/RHSA-2006-0160.html
- http://www.securityfocus.com/archive/1/427053/100/0/threaded
- http://www.securityfocus.com/archive/1/427990/100/0/threaded
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10287
- ftp://patches.sgi.com/support/free/security/advisories/20060201-01-U
- http://lists.suse.com/archive/suse-security-announce/2006-Jan/0001.html
- http://secunia.com/advisories/18147
- http://secunia.com/advisories/18380
- http://secunia.com/advisories/18385
- http://secunia.com/advisories/18387
- http://secunia.com/advisories/18389
- http://secunia.com/advisories/18398
- http://secunia.com/advisories/18407
- http://secunia.com/advisories/18416
- http://secunia.com/advisories/18428
- http://secunia.com/advisories/18436
- http://secunia.com/advisories/18534
- http://secunia.com/advisories/18582
- http://secunia.com/advisories/18674
- http://secunia.com/advisories/18675
- http://secunia.com/advisories/18679
- http://secunia.com/advisories/18908
- http://secunia.com/advisories/18913
- http://secunia.com/advisories/19230
- http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2006\u0026m=slackware-security.472683
- http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2006\u0026m=slackware-security.474747
- http://www.debian.org/security/2005/dsa-931
- http://www.debian.org/security/2005/dsa-932
- http://www.debian.org/security/2005/dsa-937
- http://www.debian.org/security/2005/dsa-938
- http://www.debian.org/security/2005/dsa-940
- http://www.debian.org/security/2006/dsa-936
- http://www.debian.org/security/2006/dsa-950
- http://www.debian.org/security/2006/dsa-961
- http://www.debian.org/security/2006/dsa-962
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:010
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:011
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:012
- http://www.redhat.com/support/errata/RHSA-2006-0160.html
- http://www.securityfocus.com/archive/1/427053/100/0/threaded
- http://www.securityfocus.com/archive/1/427990/100/0/threaded
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10287