The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows malicious users to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integer underflows.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
easy software products cups 1.1.22 |
||
kde kpdf 3.4.3 |
||
kde kdegraphics 3.4.3 |
||
tetex tetex 3.0 |
||
kde koffice 1.4.1 |
||
kde kword 1.4.2 |
||
poppler poppler 0.4.2 |
||
tetex tetex 1.0.7 |
||
sgi propack 3.0 |
||
easy software products cups 1.1.23 rc1 |
||
kde kdegraphics 3.2 |
||
kde koffice 1.4.2 |
||
libextractor libextractor |
||
easy software products cups 1.1.22 rc1 |
||
xpdf xpdf 3.0 |
||
tetex tetex 2.0.2 |
||
tetex tetex 2.0.1 |
||
conectiva linux 10.0 |
||
kde kpdf 3.2 |
||
easy software products cups 1.1.23 |
||
kde koffice 1.4 |
||
tetex tetex 2.0 |
||
suse suse linux 9.0 |
||
slackware slackware linux 9.0 |
||
mandrakesoft mandrake linux 2006 |
||
redhat enterprise linux 2.1 |
||
debian debian linux 3.1 |
||
redhat fedora core core 2.0 |
||
turbolinux turbolinux multimedia |
||
redhat enterprise linux 4.0 |
||
slackware slackware linux 10.0 |
||
slackware slackware linux 10.2 |
||
trustix secure linux 2.0 |
||
mandrakesoft mandrake linux corporate server 2.1 |
||
redhat enterprise linux desktop 3.0 |
||
debian debian linux 3.0 |
||
suse suse linux 9.1 |
||
mandrakesoft mandrake linux 10.2 |
||
ubuntu ubuntu linux 4.1 |
||
redhat linux advanced workstation 2.1 |
||
suse suse linux 10.0 |
||
redhat enterprise linux 3.0 |
||
suse suse linux 9.3 |
||
turbolinux turbolinux appliance server 1.0 workgroup edition |
||
slackware slackware linux 10.1 |
||
slackware slackware linux 9.1 |
||
trustix secure linux 3.0 |
||
redhat fedora core core 1.0 |
||
ubuntu ubuntu linux 5.04 |
||
ubuntu ubuntu linux 5.10 |
||
mandrakesoft mandrake linux 10.1 |
||
sco openserver 5.0.7 |
||
redhat linux 9.0 |
||
suse suse linux 9.2 |
||
mandrakesoft mandrake linux corporate server 3.0 |
||
redhat fedora core core 4.0 |
||
turbolinux turbolinux server 10.0 x86 |
||
suse suse linux 1.0 |
||
turbolinux turbolinux home |
||
turbolinux turbolinux workstation 8.0 |
||
turbolinux turbolinux fuji |
||
turbolinux turbolinux personal |
||
turbolinux turbolinux 10 |
||
redhat linux 7.3 |
||
sco openserver 6.0 |
||
redhat enterprise linux desktop 4.0 |
||
trustix secure linux 2.2 |
||
turbolinux turbolinux server 8.0 |
||
redhat fedora core core 3.0 |
||
turbolinux turbolinux server 10.0 |
||
gentoo linux |
||
turbolinux turbolinux desktop 10.0 |
||
turbolinux turbolinux appliance server 1.0 hosting edition |
Vulmon