|
|
|
>>
VUPEN Security / Public Mailing Lists Mirror |
Assigned : VUPEN/ADV-2006-0515
From : "Than Ngo" <than at redhat.com>
Subject : Fedora Core 4 Update: xpdf-3.01-0.FC4.8
Date : 2006-02-10
Original Message
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2006-104
2006-02-10
---------------------------------------------------------------------
Product : Fedora Core 4
Name : xpdf
Version : 3.01
Release : 0.FC4.8
Summary : A PDF file viewer for the X Window System.
Description :
Xpdf is an X Window System based viewer for Portable Document Format
(PDF) files. Xpdf is a small and efficient program which uses
standard X fonts.
---------------------------------------------------------------------
Update Information:
xpdf contains a heap based buffer overflow in the splash
rasterizer engine that can crash kpdf or even execute
arbitrary code.
Users impacted by these issues, should update to this new
package release.
---------------------------------------------------------------------
* Tue Feb 7 2006 Than Ngo <than@redhat.com> 1:3.01-0.FC4.8
- apply official patch to fix buffer overflow issue in the xpdf codebase
when handling splash images CVE-2006-0301 (#179047).
* Fri Jan 27 2006 Than Ngo <than@redhat.com> 1:3.01-0.FC4.7
- apply patch to fix buffer overflow issue in the xpdf codebase
when handling splash images CVE-2006-0301 (#179047).
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/
aea6ed92fb72a3f6674e77f6d973d6227a174385 SRPMS/xpdf-3.01-0.FC4.8.src.rpm
39f47f83421e36ff6b5ab0713ca792555eaac2d3 ppc/xpdf-3.01-0.FC4.8.ppc.rpm
9b557fbbd3a8ae434c2f0ad244fa1bcf7dabe6fa ppc/debug/xpdf-debuginfo-3.01-0.FC4.8.ppc.rpm
565e4e6eefaad8c740db501fbe87424c21cb32ea x86_64/xpdf-3.01-0.FC4.8.x86_64.rpm
91fd44a731cd12ff96e76b34381c047465af3983 x86_64/debug/xpdf-debuginfo-3.01-0.FC4.8.x86_64.rpm
4d4190ad7743c84acc0ad2070ae6ece97dab7232 i386/xpdf-3.01-0.FC4.8.i386.rpm
6e39fde98f929e680ee931cc5146a23d6e7e9c67 i386/debug/xpdf-debuginfo-3.01-0.FC4.8.i386.rpm
This update can be installed with the 'yum' update program. Use 'yum update
package-name' at the command line. For more information, refer to 'Managing
Software with yum,' available at http://fedora.redhat.com/docs/yum/.
---------------------------------------------------------------------
Disclaimer : VUPEN Security does not endorse the content of this
message submitted by others to public mailinglists. Messages submitted to public
mailinglists do not necessarily reflect the opinions or policies of VUPEN Security.
VUPEN Security makes no warranties, express or implied, as to the content of the message
in this page or the accuracy and reliability of any messages and other materials
submitted to public mailinglists. Any questions or comments regarding this page
should be sent to
team@vupen.com
|
|
|
|
|
|
Monthly Statistics |
 |
|
|
|
| |
|
Try VUPEN
VNS |
 |
|
 |
|
| |
|
 |
| |
|
|
|
|
