sdkp3-popplerSecurity update for popplerSecurity update for popplerThis update of poppler fixes two security issues:
CVE-2009-3608: Integer overflow in the
ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x
before 3.02pl4 and Poppler before 0.12.1, as used in GPdf,
kdegraphics KPDF, CUPS pdftops, and teTeX, might allow
remote attackers to execute arbitrary code via a crafted
PDF document that triggers a heap-based buffer overflow.
CVE-2009-4035: A indexing error in FoFiType1::parse() was
fixed that could be used by attackers to corrupt memory and
potentially execute code.
This update of poppler fixes two security issues:
CVE-2009-3608: Integer overflow in the
ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x
before 3.02pl4 and Poppler before 0.12.1, as used in GPdf,
kdegraphics KPDF, CUPS pdftops, and teTeX, might allow
remote attackers to execute arbitrary code via a crafted
PDF document that triggers a heap-based buffer overflow.
CVE-2009-4035: A indexing error in FoFiType1::parse() was
fixed that could be used by attackers to corrupt memory and
potentially execute code.
securitypoppler-develx86_64625ff715469e0b9e6a6be090e28c64993fe2a392