Bug 142106

Summary: xpdf + poppler buffer overflows (CVE-2005-lots)
Product: [openSUSE] SUSE LINUX 10.0 Reporter: Jon Nelson <jnelson-suse>
Component: SecurityAssignee: Security Team bot <security-team>
Status: RESOLVED DUPLICATE QA Contact: E-mail List <qa-bugs>
Severity: Normal    
Priority: P5 - None    
Version: Final   
Target Milestone: ---   
Hardware: Other   
OS: Other   
Whiteboard: CVE-2005-3626: CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Found By: Other Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Jon Nelson 2006-01-09 17:11:09 UTC 
A bunch of buffer overflows - I noticed in the Mandrake announcement for updated packages, I don't recall seeing one for SUSE. From the Mandrake announcement, the following issues are fixed:

 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3191
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3192
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3193
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3624
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3625
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3626
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3627

You probably already know this but I couldn't find mention of it in bugzilla. Thanks!
Comment 1 Marcus Meissner 2006-01-10 10:01:08 UTC 
we are aware of those and are preparing updates.

some of those issues we have actually found :/

thanks for the report!

*** This bug has been marked as a duplicate of 137156 ***
Comment 2 Thomas Biege 2009-10-13 20:46:55 UTC 
CVE-2005-3626: CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:N/A:P)