Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2Stream::readSymbolDictSeg, (2) JBIG2Stream::readSymbolDictSeg, and (3) JBIG2Stream::readGenericBitmap.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Xpdf | Foolabs | 0.5a (including) | 0.5a (including) |
| Xpdf | Foolabs | 0.7a (including) | 0.7a (including) |
| Xpdf | Foolabs | 0.91a (including) | 0.91a (including) |
| Xpdf | Foolabs | 0.91b (including) | 0.91b (including) |
| Xpdf | Foolabs | 0.91c (including) | 0.91c (including) |
| Xpdf | Foolabs | 0.92a (including) | 0.92a (including) |
| Xpdf | Foolabs | 0.92b (including) | 0.92b (including) |
| Xpdf | Foolabs | 0.92c (including) | 0.92c (including) |
| Xpdf | Foolabs | 0.92d (including) | 0.92d (including) |
| Xpdf | Foolabs | 0.92e (including) | 0.92e (including) |
| Xpdf | Foolabs | 0.93a (including) | 0.93a (including) |
| Xpdf | Foolabs | 0.93b (including) | 0.93b (including) |
| Xpdf | Foolabs | 0.93c (including) | 0.93c (including) |
| Xpdf | Foolabs | 1.00a (including) | 1.00a (including) |
| Xpdfreader | Glyphandcog | * | 3.02 (including) |
| Xpdfreader | Glyphandcog | 0.2 (including) | 0.2 (including) |
| Xpdfreader | Glyphandcog | 0.3 (including) | 0.3 (including) |
| Xpdfreader | Glyphandcog | 0.4 (including) | 0.4 (including) |
| Xpdfreader | Glyphandcog | 0.5 (including) | 0.5 (including) |
| Xpdfreader | Glyphandcog | 0.6 (including) | 0.6 (including) |
| Xpdfreader | Glyphandcog | 0.7 (including) | 0.7 (including) |
| Xpdfreader | Glyphandcog | 0.80 (including) | 0.80 (including) |
| Xpdfreader | Glyphandcog | 0.90 (including) | 0.90 (including) |
| Xpdfreader | Glyphandcog | 0.91 (including) | 0.91 (including) |
| Xpdfreader | Glyphandcog | 0.92 (including) | 0.92 (including) |
| Xpdfreader | Glyphandcog | 0.93 (including) | 0.93 (including) |
| Xpdfreader | Glyphandcog | 1.00 (including) | 1.00 (including) |
| Xpdfreader | Glyphandcog | 1.01 (including) | 1.01 (including) |
| Xpdfreader | Glyphandcog | 2.00 (including) | 2.00 (including) |
| Xpdfreader | Glyphandcog | 2.01 (including) | 2.01 (including) |
| Xpdfreader | Glyphandcog | 2.02 (including) | 2.02 (including) |
| Xpdfreader | Glyphandcog | 2.03 (including) | 2.03 (including) |
| Xpdfreader | Glyphandcog | 3.00 (including) | 3.00 (including) |
| Xpdfreader | Glyphandcog | 3.01 (including) | 3.01 (including) |
| Red Hat Enterprise Linux 3 | RedHat | xpdf-1:2.02-14.el3 | * |
| Red Hat Enterprise Linux 4 | RedHat | cups-1:1.1.22-0.rc1.9.27.el4_7.5 | * |
| Red Hat Enterprise Linux 4 | RedHat | xpdf-1:3.00-20.el4 | * |
| Red Hat Enterprise Linux 4 | RedHat | kdegraphics-7:3.3.1-13.el4 | * |
| Red Hat Enterprise Linux 4 | RedHat | gpdf-0:2.8.2-7.7.2.el4_7.4 | * |
| Red Hat Enterprise Linux 4 | RedHat | tetex-0:2.0.2-22.0.1.EL4.16 | * |
| Red Hat Enterprise Linux 5 | RedHat | cups-1:1.3.7-8.el5_3.4 | * |
| Red Hat Enterprise Linux 5 | RedHat | kdegraphics-7:3.5.4-12.el5_3 | * |
| Red Hat Enterprise Linux 5 | RedHat | poppler-0:0.5.4-4.4.el5_3.9 | * |
| Red Hat Enterprise Linux 5 | RedHat | tetex-0:3.0-33.8.el5_5.5 | * |
| Cups | Ubuntu | intrepid | * |
| Cups | Ubuntu | jaunty | * |
| Cups | Ubuntu | upstream | * |
| Cupsys | Ubuntu | dapper | * |
| Cupsys | Ubuntu | gutsy | * |
| Cupsys | Ubuntu | hardy | * |
| Cupsys | Ubuntu | upstream | * |
| Gpdf | Ubuntu | dapper | * |
| Ipe | Ubuntu | dapper | * |
| Ipe | Ubuntu | gutsy | * |
| Ipe | Ubuntu | intrepid | * |
| Ipe | Ubuntu | jaunty | * |
| Ipe | Ubuntu | karmic | * |
| Koffice | Ubuntu | dapper | * |
| Koffice | Ubuntu | gutsy | * |
| Koffice | Ubuntu | hardy | * |
| Koffice | Ubuntu | intrepid | * |
| Koffice | Ubuntu | jaunty | * |
| Libextractor | Ubuntu | dapper | * |
| Libextractor | Ubuntu | gutsy | * |
| Libextractor | Ubuntu | hardy | * |
| Libextractor | Ubuntu | intrepid | * |
| Libextractor | Ubuntu | jaunty | * |
| Libextractor | Ubuntu | karmic | * |
| Libextractor | Ubuntu | lucid | * |
| Libextractor | Ubuntu | maverick | * |
| Libextractor | Ubuntu | natty | * |
| Libextractor | Ubuntu | oneiric | * |
| Libextractor | Ubuntu | quantal | * |
| Libextractor | Ubuntu | raring | * |
| Libextractor | Ubuntu | saucy | * |
| Libextractor | Ubuntu | utopic | * |
| Libextractor | Ubuntu | vivid | * |
| Pdfkit.framework | Ubuntu | dapper | * |
| Pdftohtml | Ubuntu | dapper | * |
| Poppler | Ubuntu | dapper | * |
| Poppler | Ubuntu | devel | * |
| Poppler | Ubuntu | gutsy | * |
| Poppler | Ubuntu | hardy | * |
| Poppler | Ubuntu | intrepid | * |
| Poppler | Ubuntu | jaunty | * |
| Poppler | Ubuntu | karmic | * |
| Poppler | Ubuntu | lucid | * |
| Poppler | Ubuntu | maverick | * |
| Poppler | Ubuntu | natty | * |
| Poppler | Ubuntu | oneiric | * |
| Poppler | Ubuntu | precise | * |
| Poppler | Ubuntu | quantal | * |
| Poppler | Ubuntu | raring | * |
| Poppler | Ubuntu | saucy | * |
| Poppler | Ubuntu | trusty | * |
| Poppler | Ubuntu | utopic | * |
| Poppler | Ubuntu | vivid | * |
| Poppler | Ubuntu | vivid/stable-phone-overlay | * |
| Poppler | Ubuntu | wily | * |
| Poppler | Ubuntu | xenial | * |
| Xpdf | Ubuntu | dapper | * |
| Xpdf | Ubuntu | gutsy | * |
| Xpdf | Ubuntu | hardy | * |
| Xpdf | Ubuntu | intrepid | * |
| Xpdf | Ubuntu | jaunty | * |
| Xpdf | Ubuntu | karmic | * |
| Xpdf | Ubuntu | upstream | * |