Bug 142106 - xpdf + poppler buffer overflows (CVE-2005-lots)
Summary: xpdf + poppler buffer overflows (CVE-2005-lots)
Status: RESOLVED DUPLICATE of bug 137156
Alias: None
Product: SUSE LINUX 10.0
Classification: openSUSE
Component: Security (show other bugs)
Version: Final
Hardware: Other Other
: P5 - None : Normal
Target Milestone: ---
Assignee: Security Team bot
QA Contact: E-mail List
URL:
Whiteboard: CVE-2005-3626: CVSS v2 Base Score: 5....
Keywords:
Depends on:
Blocks:
 
Reported: 2006-01-09 17:11 UTC by Jon Nelson
Modified: 2009-10-13 20:46 UTC (History)
0 users

See Also:
Found By: Other
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Jon Nelson 2006-01-09 17:11:09 UTC 
A bunch of buffer overflows - I noticed in the Mandrake announcement for updated packages, I don't recall seeing one for SUSE. From the Mandrake announcement, the following issues are fixed:

 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3191
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3192
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3193
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3624
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3625
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3626
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3627

You probably already know this but I couldn't find mention of it in bugzilla. Thanks!
Comment 1 Marcus Meissner 2006-01-10 10:01:08 UTC 
we are aware of those and are preparing updates.

some of those issues we have actually found :/

thanks for the report!

*** This bug has been marked as a duplicate of 137156 ***
Comment 2 Thomas Biege 2009-10-13 20:46:55 UTC 
CVE-2005-3626: CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:N/A:P)