2009-04-23 19:30:01 2019-03-06 17:30:38

Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2Stream::readSymbolDictSeg, (2) JBIG2Stream::readSymbolDictSeg, and (3) JBIG2Stream::readGenericBitmap.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL
Glyphandcog Xpdfreader 0.92 (not an official CPE) Glyphandcog Xpdfreader 0.91 (not an official CPE) Glyphandcog Xpdfreader 0.90 (not an official CPE) Glyphandcog Xpdfreader 0.80 (not an official CPE) Glyphandcog Xpdfreader 0.7 (not an official CPE) Glyphandcog Xpdfreader 0.6 (not an official CPE) Glyphandcog Xpdfreader 0.5 (not an official CPE) Glyphandcog Xpdfreader 0.4 (not an official CPE) Glyphandcog Xpdfreader 0.3 (not an official CPE) Glyphandcog Xpdfreader 0.2 (not an official CPE) Foolabs Xpdf 1.00a (not an official CPE) Foolabs Xpdf 0.93c (not an official CPE) Foolabs Xpdf 0.93b (not an official CPE) Foolabs Xpdf 0.93a (not an official CPE) Foolabs Xpdf 0.92e (not an official CPE) Foolabs Xpdf 0.92d (not an official CPE) Foolabs Xpdf 0.92c (not an official CPE) Foolabs Xpdf 0.92b (not an official CPE) Foolabs Xpdf 0.92a (not an official CPE) Foolabs Xpdf 0.91c (not an official CPE) Foolabs Xpdf 0.91b (not an official CPE) Foolabs Xpdf 0.91a (not an official CPE) Foolabs Xpdf 0.7a (not an official CPE) Foolabs Xpdf 0.5a (not an official CPE) Apple CUPS 1.3.11 Apple CUPS 1.3.10 Apple CUPS 1.3.9 Apple CUPS 1.3.8 Apple CUPS 1.3.7 Apple CUPS 1.3.6 Apple CUPS 1.3.5 Apple CUPS 1.3.4 Apple CUPS 1.3.3 Apple CUPS 1.3.2 Apple CUPS 1.3.1 Apple CUPS 1.3.0 Apple CUPS 1.2.12 Apple CUPS 1.2.11 Apple CUPS 1.2.10 Apple CUPS 1.2.9 Apple CUPS 1.2.8 Apple CUPS 1.2.7 Apple CUPS 1.2.6 Apple CUPS 1.2.5 Apple CUPS 1.2.4 Apple CUPS 1.2.3 Apple CUPS 1.2.2 Apple CUPS 1.2.1 Apple CUPS 1.1.23 release candidate 1 Apple CUPS 1.2.0 Apple CUPS 1.1.23 Apple CUPS 1.1.22 release candidate 2 Apple CUPS 1.1.22 release candidate 1 Apple CUPS 1.1.21 release candidate 2 Apple CUPS 1.1.22 Apple CUPS 1.1.21 release candidate 1 Apple CUPS 1.1.21 Apple CUPS 1.1.20 release candidate 6 Apple CUPS 1.1.20 release candidate 5 Apple CUPS 1.1.20 release candidate 4 Apple CUPS 1.1.20 release candidate 3 Apple CUPS 1.1.20 release candidate 2 Apple CUPS 1.1.20 release candidate 1 Apple CUPS 1.1.20 Apple CUPS 1.1.19 release candidate 5 Apple CUPS 1.1.19 release candidate 4 Apple CUPS 1.1.19 release candidate 3 Apple CUPS 1.1.19 release candidate 2 Apple CUPS 1.1.19 release candidate 1 Apple CUPS 1.1.19 Apple CUPS 1.18 Apple CUPS 1.1.17 Apple CUPS 1.1.16 Apple CUPS 1.1.15 Apple CUPS 1.1.14 Apple CUPS 1.1.13 Apple CUPS 1.1.12 Apple CUPS 1.1.11 Apple CUPS 1.1.10-1 Apple CUPS 1.1.10 Apple CUPS 1.1.9-1 Apple CUPS 1.1.9 Apple CUPS 1.1.8 Apple CUPS 1.1.7 Apple CUPS 1.1.6-3 Apple CUPS 1.1.6-2 Apple CUPS 1.1.6-1 Apple CUPS 1.1.6 Apple CUPS 1.1.5-2 Apple CUPS 1.1.5-1 Apple CUPS 1.1.5 Apple CUPS 1.1.4 Apple CUPS 1.1.3 Apple CUPS 1.1.2 Apple CUPS 1.1.1 Apple CUPS 1.1 Glyphandcog Xpdfreader 0.93 (not an official CPE) Glyphandcog Xpdfreader 1.00 (not an official CPE) Glyphandcog Xpdfreader 1.01 (not an official CPE) Glyphandcog Xpdfreader 2.00 (not an official CPE) Glyphandcog Xpdfreader 2.01 (not an official CPE) Glyphandcog Xpdfreader 2.02 (not an official CPE) Glyphandcog Xpdfreader 2.03 (not an official CPE) Glyphandcog Xpdfreader 3.00 (not an official CPE) Glyphandcog Xpdfreader 3.01 (not an official CPE) Glyphandcog Xpdfreader 3.02 (not an official CPE)