Synopsis: Important: gpdf security update Issue date: 2009-12-16 CVE Names: CVE-2009-4035 Petr Gajdos and Christian Kornacker of SUSE reported a buffer overflow flaw in GPdf's Type 1 font parser. A specially-crafted PDF file with an embedded Type 1 font could cause GPdf to crash or, possibly, execute arbitrary code when opened. (CVE-2009-4035) SL 4.x SRPMS: gpdf-2.8.2-7.7.2.el4_8.6.src.rpm i386: gpdf-2.8.2-7.7.2.el4_8.6.i386.rpm x86_64: gpdf-2.8.2-7.7.2.el4_8.6.x86_64.rpm -Connie Sieh -Troy Dawson