Synopsis: Important: xpdf security update
Issue date: 2007-07-30
CVE Names: CVE-2007-3387
Maurycy Prodeus discovered an integer overflow flaw in the processing
of PDF files. An attacker could create a malicious PDF file that would
cause Xpdf to crash or potentially execute arbitrary code when opened.
(CVE-2007-3387)
SL 3.0.x
SRPMS:
xpdf-2.02-10.RHEL3.src.rpm
i386:
xpdf-2.02-10.RHEL3.i386.rpm
x86_64:
xpdf-2.02-10.RHEL3.x86_64.rpm
SL 4.x
SRPMS:
xpdf-3.00-12.RHEL4.src.rpm
i386:
xpdf-3.00-12.RHEL4.i386.rpm
x86_64:
xpdf-3.00-12.RHEL4.x86_64.rpm
-Connie Sieh
-Troy Dawson