National Vulnerability Database (NVD) National Vulnerability Database (CVE-2009-0146)

National Cyber Awareness System

Vulnerability Summary for CVE-2009-0146

Original release date:04/23/2009

Last revised:12/21/2010

Source: US-CERT/NIST

Overview

Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2SymbolDict::setBitmap and (2) JBIG2Stream::readSymbolDictSeg.

Impact

CVSS Severity (version 2.0):

CVSS v2 Base Score:4.3 (MEDIUM) (AV:N/AC:M/Au:N/C:N/I:N/A:P) (legend)

Impact Subscore: 2.9

Exploitability Subscore: 8.6

CVSS Version 2 Metrics:

Access Vector: Network exploitable; Victim must voluntarily interact with attack mechanism

Access Complexity: Medium

Authentication: Not required to exploit

Impact Type:Allows disruption of serviceUnknown

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

US-CERT Technical Alert: TA09-133A

Name: TA09-133A

Hyperlink:http://www.us-cert.gov/cas/techalerts/TA09-133A.html

External Source: REDHAT

Name: RHSA-2009:0430

Type: Patch Information

Hyperlink:http://www.redhat.com/support/errata/RHSA-2009-0430.html

External Source: FEDORA

Name: FEDORA-2009-6982

Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01291.html

External Source: FEDORA

Name: FEDORA-2009-6973

Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-June/msg01277.html

External Source: FEDORA

Name: FEDORA-2009-6972

Hyperlink:https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00567.html

External Source: CONFIRM

Name: https://bugzilla.redhat.com/show_bug.cgi?id=490612

Hyperlink:https://bugzilla.redhat.com/show_bug.cgi?id=490612

External Source: VUPEN

Name: ADV-2010-1040

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2010/1040

External Source: VUPEN

Name: ADV-2009-1621

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2009/1621

External Source: VUPEN

Name: ADV-2009-1297

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2009/1297

External Source: VUPEN

Name: ADV-2009-1077

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2009/1077

External Source: VUPEN

Name: ADV-2009-1066

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2009/1066

External Source: VUPEN

Name: ADV-2009-1065

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2009/1065

External Source: SECTRACK

Name: 1022073

Hyperlink:http://www.securitytracker.com/id?1022073

External Source: BID

Name: 34568

Hyperlink:http://www.securityfocus.com/bid/34568

External Source: BUGTRAQ

Name: 20090417 rPSA-2009-0059-1 poppler

Hyperlink:http://www.securityfocus.com/archive/1/archive/1/502761/100/0/threaded

External Source: BUGTRAQ

Name: 20090417 rPSA-2009-0061-1 cups

Hyperlink:http://www.securityfocus.com/archive/1/archive/1/502750/100/0/threaded

External Source: REDHAT

Name: RHSA-2009:0480

Hyperlink:http://www.redhat.com/support/errata/RHSA-2009-0480.html

External Source: REDHAT

Name: RHSA-2009:0431

Hyperlink:http://www.redhat.com/support/errata/RHSA-2009-0431.html

External Source: REDHAT

Name: RHSA-2009:0429

Hyperlink:http://www.redhat.com/support/errata/RHSA-2009-0429.html

External Source: MANDRIVA

Name: MDVSA-2010:087

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2010:087

External Source: MANDRIVA

Name: MDVSA-2009:101

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2009:101

External Source: DEBIAN

Name: DSA-1793

Hyperlink:http://www.debian.org/security/2009/dsa-1793

External Source: DEBIAN

Name: DSA-1790

Hyperlink:http://www.debian.org/security/2009/dsa-1790

External Source: CONFIRM

Name: http://wiki.rpath.com/Advisories:rPSA-2009-0061

Hyperlink:http://wiki.rpath.com/Advisories:rPSA-2009-0061

External Source: CONFIRM

Name: http://wiki.rpath.com/Advisories:rPSA-2009-0059

Hyperlink:http://wiki.rpath.com/Advisories:rPSA-2009-0059

External Source: CONFIRM

Name: http://support.apple.com/kb/HT3639

Hyperlink:http://support.apple.com/kb/HT3639

External Source: CONFIRM

Name: http://support.apple.com/kb/HT3549

Hyperlink:http://support.apple.com/kb/HT3549

External Source: SLACKWARE

Name: SSA:2009-129-01

Hyperlink:http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.578477

External Source: GENTOO

Name: GLSA-200904-20

Hyperlink:http://security.gentoo.org/glsa/glsa-200904-20.xml

External Source: SECUNIA

Name: 35685

Type: Advisory

Hyperlink:http://secunia.com/advisories/35685

External Source: SECUNIA

Name: 35618

Type: Advisory

Hyperlink:http://secunia.com/advisories/35618

External Source: SECUNIA

Name: 35074

Type: Advisory

Hyperlink:http://secunia.com/advisories/35074

External Source: SECUNIA

Name: 35065

Type: Advisory

Hyperlink:http://secunia.com/advisories/35065

External Source: SECUNIA

Name: 35064

Type: Advisory

Hyperlink:http://secunia.com/advisories/35064

External Source: SECUNIA

Name: 35037

Hyperlink:http://secunia.com/advisories/35037

External Source: SECUNIA

Name: 34991

Type: Advisory

Hyperlink:http://secunia.com/advisories/34991

External Source: SECUNIA

Name: 34963

Hyperlink:http://secunia.com/advisories/34963

External Source: SECUNIA

Name: 34959

Type: Advisory

Hyperlink:http://secunia.com/advisories/34959

External Source: SECUNIA

Name: 34852

Type: Advisory

Hyperlink:http://secunia.com/advisories/34852

External Source: SECUNIA

Name: 34756

Hyperlink:http://secunia.com/advisories/34756

External Source: SECUNIA

Name: 34755

Type: Advisory

Hyperlink:http://secunia.com/advisories/34755

External Source: SECUNIA

Name: 34481

Type: Advisory

Hyperlink:http://secunia.com/advisories/34481

External Source: SECUNIA

Name: 34291

Type: Advisory

Hyperlink:http://secunia.com/advisories/34291

External Source: REDHAT

Name: RHSA-2009:0458

Hyperlink:http://rhn.redhat.com/errata/RHSA-2009-0458.html

External Source: OVAL

Name: oval:org.mitre.oval:def:9632

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9632

External Source: SUSE

Name: SUSE-SR:2009:012

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html

External Source: SUSE

Name: SUSE-SR:2009:010

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00000.html

External Source: SUSE

Name: SUSE-SA:2009:024

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00011.html

External Source: APPLE

Name: APPLE-SA-2009-05-12

Hyperlink:http://lists.apple.com/archives/security-announce/2009/May/msg00002.html

External Source: APPLE

Name: APPLE-SA-2009-06-17-1

Hyperlink:http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html

External Source: CONFIRM

Name: http://bugs.gentoo.org/show_bug.cgi?id=263028

Hyperlink:http://bugs.gentoo.org/show_bug.cgi?id=263028

References to Check Content

Identifier:oval:org.mitre.oval:def:9632

Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5

Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:9632

Vulnerable software and versions

Configuration 1

* cpe:/a:foolabs:xpdf:3.02 and previous versions

* cpe:/a:foolabs:xpdf:3.00

* cpe:/a:foolabs:xpdf:3.01

* cpe:/a:foolabs:xpdf:2.03

* cpe:/a:foolabs:xpdf:2.02

* cpe:/a:foolabs:xpdf:2.01

* cpe:/a:foolabs:xpdf:2.00

* cpe:/a:foolabs:xpdf:1.01

* cpe:/a:foolabs:xpdf:1.00a

* cpe:/a:foolabs:xpdf:1.00

* cpe:/a:foolabs:xpdf:0.93c

* cpe:/a:foolabs:xpdf:0.93b

* cpe:/a:foolabs:xpdf:0.93a

* cpe:/a:foolabs:xpdf:0.93

* cpe:/a:foolabs:xpdf:0.92e

* cpe:/a:foolabs:xpdf:0.92d

* cpe:/a:foolabs:xpdf:0.92c

* cpe:/a:foolabs:xpdf:0.92b

* cpe:/a:foolabs:xpdf:0.92a

* cpe:/a:foolabs:xpdf:0.92

* cpe:/a:foolabs:xpdf:0.91c

* cpe:/a:foolabs:xpdf:0.91b

* cpe:/a:foolabs:xpdf:0.91a

* cpe:/a:foolabs:xpdf:0.91

* cpe:/a:foolabs:xpdf:0.90

* cpe:/a:foolabs:xpdf:0.80

* cpe:/a:foolabs:xpdf:0.7a

* cpe:/a:foolabs:xpdf:0.7

* cpe:/a:foolabs:xpdf:0.6

* cpe:/a:foolabs:xpdf:0.5a

* cpe:/a:foolabs:xpdf:0.5

* cpe:/a:foolabs:xpdf:0.4

* cpe:/a:foolabs:xpdf:0.3

* cpe:/a:foolabs:xpdf:0.2

Configuration 2

* cpe:/a:apple:cups:1.3.9 and previous versions

* cpe:/a:apple:cups:1.3.6

* cpe:/a:apple:cups:1.3.0

* cpe:/a:apple:cups:1.3.1

* cpe:/a:apple:cups:1.3.11

* cpe:/a:apple:cups:1.3.2

* cpe:/a:apple:cups:1.3.3

* cpe:/a:apple:cups:1.3.4

* cpe:/a:apple:cups:1.3.5

* cpe:/a:apple:cups:1.3.8

* cpe:/a:apple:cups:1.3.7

* cpe:/a:apple:cups:1.3.10

* cpe:/a:apple:cups:1.2.1

* cpe:/a:apple:cups:1.2.0

* cpe:/a:apple:cups:1.2.5

* cpe:/a:apple:cups:1.2.4

* cpe:/a:apple:cups:1.2.3

* cpe:/a:apple:cups:1.2.2

* cpe:/a:apple:cups:1.2.6

* cpe:/a:apple:cups:1.2.7

* cpe:/a:apple:cups:1.2.8

* cpe:/a:apple:cups:1.2.9

* cpe:/a:apple:cups:1.2.10

* cpe:/a:apple:cups:1.2.11

* cpe:/a:apple:cups:1.2.12

* cpe:/a:apple:cups:1.1

* cpe:/a:apple:cups:1.1.1

* cpe:/a:apple:cups:1.1.5-1

* cpe:/a:apple:cups:1.1.5-2

* cpe:/a:apple:cups:1.1.6

* cpe:/a:apple:cups:1.1.6-1

* cpe:/a:apple:cups:1.1.2

* cpe:/a:apple:cups:1.1.3

* cpe:/a:apple:cups:1.1.4

* cpe:/a:apple:cups:1.1.5

* cpe:/a:apple:cups:1.1.9

* cpe:/a:apple:cups:1.1.9-1

* cpe:/a:apple:cups:1.1.10-1

* cpe:/a:apple:cups:1.1.10

* cpe:/a:apple:cups:1.1.6-3

* cpe:/a:apple:cups:1.1.6-2

* cpe:/a:apple:cups:1.1.8

* cpe:/a:apple:cups:1.1.7

* cpe:/a:apple:cups:1.1.16

* cpe:/a:apple:cups:1.1.15

* cpe:/a:apple:cups:1.1.18

* cpe:/a:apple:cups:1.1.17

* cpe:/a:apple:cups:1.1.12

* cpe:/a:apple:cups:1.1.11

* cpe:/a:apple:cups:1.1.14

* cpe:/a:apple:cups:1.1.13

* cpe:/a:apple:cups:1.1.19:rc2

* cpe:/a:apple:cups:1.1.19:rc3

* cpe:/a:apple:cups:1.1.19

* cpe:/a:apple:cups:1.1.19:rc1

* cpe:/a:apple:cups:1.1.20

* cpe:/a:apple:cups:1.1.20:rc1

* cpe:/a:apple:cups:1.1.19:rc4

* cpe:/a:apple:cups:1.1.19:rc5

* cpe:/a:apple:cups:1.1.20:rc4

* cpe:/a:apple:cups:1.1.20:rc5

* cpe:/a:apple:cups:1.1.20:rc2

* cpe:/a:apple:cups:1.1.20:rc3

* cpe:/a:apple:cups:1.1.21:rc1

* cpe:/a:apple:cups:1.1.21

* cpe:/a:apple:cups:1.1.20:rc6

* cpe:/a:apple:cups:1.1.21:rc2

* cpe:/a:apple:cups:1.1.23:rc1

* cpe:/a:apple:cups:1.1.22

* cpe:/a:apple:cups:1.1.22:rc2

* cpe:/a:apple:cups:1.1.22:rc1

* cpe:/a:apple:cups:1.1.23

* Denotes Vulnerable Software

Technical Details

Vulnerability Type (View All)

Buffer Errors (CWE-119)

CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0146