CVE-2005-3191

Publication date 7 December 2005

Last updated 24 July 2024

Ubuntu priority

Multiple heap-based buffer overflows in the (1) DCTStream::readProgressiveSOF and (2) DCTStream::readBaselineSOF functions in the DCT stream parsing code (Stream.cc) in xpdf 3.01 and earlier, as used in products such as (a) Poppler, (b) teTeX, (c) KDE kpdf, (d) pdftohtml, (e) KOffice KWord, (f) CUPS, and (g) libextractor allow user-assisted attackers to cause a denial of service (heap corruption) and possibly execute arbitrary code via a crafted PDF file with an out-of-range number of components (numComps), which is used as an array index.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
cupsys	7.04 feisty	Not affected
	6.10 edgy	Not affected
	6.06 LTS dapper	Not affected
gpdf	7.04 feisty	Not in release
	6.10 edgy	Fixed 2.10.0-2
	6.06 LTS dapper	Fixed 2.10.0-2
kdegraphics	7.04 feisty	Fixed 3.5.2-0ubuntu6
	6.10 edgy	Fixed 3.5.2-0ubuntu6
	6.06 LTS dapper	Fixed 3.5.2-0ubuntu6
koffice	7.04 feisty	Fixed 1.6.2-0ubuntu1.1
	6.10 edgy	Fixed 1.5.2-0ubuntu2.2
	6.06 LTS dapper	Fixed 1.5.0-0ubuntu9.2
libextractor	7.04 feisty	Fixed 0.5.14-1
	6.10 edgy	Fixed 0.5.14-1
	6.06 LTS dapper	Fixed 0.5.14-1
pdftohtml	7.04 feisty	Fixed 0.36-13
	6.10 edgy	Fixed 0.36-13
	6.06 LTS dapper	Fixed 0.36-13
poppler	7.04 feisty	Fixed 0.5.4-0ubuntu8.1
	6.10 edgy	Fixed 0.5.4-0ubuntu4.2
	6.06 LTS dapper	Fixed 0.5.1-0ubuntu7.2
tetex-bin	7.04 feisty	Fixed 3.0-13ubuntu6
	6.10 edgy	Fixed 3.0-13ubuntu6
	6.06 LTS dapper	Fixed 3.0-13ubuntu6
xpdf	7.04 feisty	Fixed 3.01-9ubuntu3
	6.10 edgy	Fixed 3.01-9ubuntu1.1
	6.06 LTS dapper	Fixed 3.01-7ubuntu0.1

CVE-2005-3191

Status

References

Related Ubuntu Security Notices (USN)

Other references