Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Fedora Local Security Checks
Title:Fedora Core 2 FEDORA-2004-348 (xpdf)

The remote host is missing an update to xpdf
announced via advisory FEDORA-2004-348.

Xpdf is an X Window System based viewer for Portable Document Format
(PDF) files. Xpdf is a small and efficient program which uses
standard X fonts.

Update Information:

Xpdf is an X Window System based viewer for Portable Document Format
(PDF) files.

During a source code audit, Chris Evans and others discovered a number
of integer overflow bugs that affected all versions of xpdf. An
attacker could construct a carefully crafted PDF file that could cause
xpdf to crash or possibly execute arbitrary code when opened. The Common
Vulnerabilities and Exposures project ( has assigned the name
CVE-2004-0888 to this issue.

Users of xpdf are advised to upgrade to this errata package, which contains
a backported patch correcting these issues.

This update can be downloaded from:

9a247439c975578530b1e63252f37719 SRPMS/xpdf-3.00-3.4.src.rpm
c7a133d156e4afb06eed8e659b5f7b41 x86_64/xpdf-3.00-3.4.x86_64.rpm
0285341acf5a3492e5ecb22d1b8f66eb x86_64/debug/xpdf-debuginfo-3.00-3.4.x86_64.rpm
4d69d5e3c58b4bc36cd02f0c5690322c i386/xpdf-3.00-3.4.i386.rpm
9a0206612ba4945ae35bd40b8bd3eecf i386/debug/xpdf-debuginfo-3.00-3.4.i386.rpm

This update can also be installed with the Update Agent
you can
launch the Update Agent with the 'up2date' command.

Solution: Apply the appropriate updates.

Risk factor : Critical

CVSS Score:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2004-0888
BugTraq ID: 11501
Conectiva Linux advisory: CLA-2004:886
Debian Security Information: DSA-573 (Google Search)
Debian Security Information: DSA-581 (Google Search)
Debian Security Information: DSA-599 (Google Search)
SuSE Security Announcement: SUSE-SA:2004:039 (Google Search)
XForce ISS Database: xpdf-pdf-bo(17818)
CopyrightCopyright (c) 2005 E-Soft Inc.

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2023 E-Soft Inc. All rights reserved.