English | Deutsch | Español | Português
 UserID:
 Passwd:
new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   
    Search 148472 CVE descriptions
and 72306 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 --------------------------------------------------------------------------
   Turbolinux Security Advisory TLSA-2006-16
   http://www.turbolinux.co.jp/security/
                                             security-team@turbolinux.co.jp
 --------------------------------------------------------------------------

 Original released date: 28 Jul 2006
 Last revised: 28 Jul 2006

 Package: xpdf

 Summary: Heap-based buffer overflow

 More information:
    Xpdf is an X Window System based viewer for Portable Document Format (PDF) files.
    A Heap-based buffer overflow vulnerability exists in xpdf.

 Impact:
    This vulnerability may allow remote attackers to execute arbitrary
    code via malformed pdf files.

 Affected Products:
    - Turbolinux FUJI
    - Turbolinux 10 Server x64 Edition
    - Turbolinux 10 Server
    - Turbolinux Home
    - Turbolinux 10 F...
    - Turbolinux 10 Desktop
    - Turbolinux Multimedia
    - Turbolinux Personal
    - Turbolinux 8 Server
    - Turbolinux 8 Workstation
    - Turbolinux 7 Server


 <Turbolinux FUJI>

   Source Packages
   Size: MD5

   xpdf-3.00-9.src.rpm
      4607285 8d51bc7fe7a0d30ef550566e0fec7404

   Binary Packages
   Size: MD5

   xpdf-3.00-9.i686.rpm
      5446909 e53a6d2c45a5f78f31ba9698ec7bd630

 <Turbolinux 10 Server x64 Edition> 

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/updates/SRPMS/xpdf-3.00-9.src.rpm
      4607285 75b47e3d398f7b622492cd2a5a4afc7a

   Binary Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/updates/RPMS/xpdf-3.00-9.x86_64.rpm
      5127038 d8c9919c8f51eaf244d676e3c090d3a1

 <Turbolinux 10 Server>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/updates/SRPMS/xpdf-3.00-12.src.rpm
      4607550 63e100db89477307b9715537827f1ed6

   Binary Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/updates/RPMS/xpdf-3.00-12.i586.rpm
      5043628 dd6fc9dbbd20d25def46894b882d428c

 <Turbolinux 10 Desktop, Turbolinux 10 F..., Turbolinux Home, Turbolinux Multimedia, Turbolinux Personal>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/updates/SRPMS/xpdf-3.00-12.src.rpm
      4607550 b9dbf1739040814a14170aed3e9b5c1e

   Binary Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/updates/RPMS/xpdf-3.00-12.i586.rpm
      5034301 ddc821419717ed119d3dbc74c9e01172

 <Turbolinux 8 Server>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/updates/SRPMS/xpdf-1.00-4.src.rpm
      4046553 299e3f1ed40aecd81a0b5613735d0e37

   Binary Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/updates/RPMS/xpdf-1.00-4.i586.rpm
      3837658 f34ac8b63e6bc79458ee33e468c94f3e

 <Turbolinux 8 Workstation>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/8/updates/SRPMS/xpdf-1.00-4.src.rpm
      4046553 2308725a3d1a9f03d4f1a8b41d0e4d68

   Binary Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/8/updates/RPMS/xpdf-1.00-4.i586.rpm
      3836776 a6ddd81227106ef72caa25a65badf4fe

 <Turbolinux 7 Server>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/7/updates/SRPMS/xpdf-0.92-4.src.rpm
      1818070 6afd113af222f0feb7d6d05705af864d

   Binary Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/7/updates/RPMS/xpdf-0.92-4.i586.rpm
      2953889 fefc9a2d7dc0e84d30ff7930a4f39382


 References:

 CVE
   [CAN-2005-3193]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-3193

 --------------------------------------------------------------------------
 Revision History
    28 Jul 2006 Initial release
 --------------------------------------------------------------------------

 Copyright(C) 2006 Turbolinux, Inc. All rights reserved. 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (GNU/Linux)

iD8DBQFEyb8YK0LzjOqIJMwRAj27AJ9ZylLi6ZbRez8Ez3PbcAryG9ppPwCfVV2G
DtOsfAiHlExivQKB6vxvP4U=
=/tcK
-----END PGP SIGNATURE-----

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  

 Forgot userid or passwd?
Email/Userid:




Home | About Us | Contact Us | Partner Programs | Developer APIs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe

© 1998-2019 E-Soft Inc. All rights reserved.