National Cyber Awareness System

Vulnerability Summary for CVE-2010-3704

Overview

The FoFiType1::parse function in fofi/FoFiType1.cc in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a PDF file with a crafted PostScript Type1 font that contains a negative array index, which bypasses input validation and triggers memory corruption.

Impact

CVSS Severity (version 2.0):

CVSS Version 2 Metrics:

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

External Source: CONFIRM

Name: http://cgit.freedesktop.org/poppler/poppler/commit/?id=39d140bfc0b8239bdd96d6a55842034ae5c05473

Type: Patch Information

Hyperlink:http://cgit.freedesktop.org/poppler/poppler/commit/?id=39d140bfc0b8239bdd96d6a55842034ae5c05473

External Source: CONFIRM

Name: ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl5.patch

Type: Patch Information

Hyperlink:ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl5.patch

External Source: CONFIRM

Name: https://bugzilla.redhat.com/show_bug.cgi?id=638960

Hyperlink:https://bugzilla.redhat.com/show_bug.cgi?id=638960

External Source: VUPEN

Name: ADV-2011-0230

Hyperlink:http://www.vupen.com/english/advisories/2011/0230

External Source: VUPEN

Name: ADV-2010-3097

Hyperlink:http://www.vupen.com/english/advisories/2010/3097

External Source: VUPEN

Name: ADV-2010-2897

Hyperlink:http://www.vupen.com/english/advisories/2010/2897

External Source: UBUNTU

Name: USN-1005-1

Hyperlink:http://www.ubuntu.com/usn/USN-1005-1

External Source: BID

Name: 43841

Hyperlink:http://www.securityfocus.com/bid/43841

External Source: REDHAT

Name: RHSA-2010:0859

Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0859.html

External Source: REDHAT

Name: RHSA-2010:0753

Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0753.html

External Source: REDHAT

Name: RHSA-2010:0752

Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0752.html

External Source: REDHAT

Name: RHSA-2010:0751

Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0751.html

External Source: REDHAT

Name: RHSA-2010:0749

Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0749.html

External Source: MLIST

Name: [oss-security] 20101004 Re: CVE requests: Poppler, Quassel, Pyfribidi, Overkill, DocUtils, FireGPG, Wireshark

Hyperlink:http://www.openwall.com/lists/oss-security/2010/10/04/6

External Source: CONFIRM

Name: http://www.openoffice.org/security/cves/CVE-2010-3702_CVE-2010-3704.html

Hyperlink:http://www.openoffice.org/security/cves/CVE-2010-3702_CVE-2010-3704.html

External Source: MANDRIVA

Name: MDVSA-2012:144

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2012:144

External Source: MANDRIVA

Name: MDVSA-2010:231

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2010:231

External Source: MANDRIVA

Name: MDVSA-2010:230

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2010:230

External Source: MANDRIVA

Name: MDVSA-2010:229

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2010:229

External Source: MANDRIVA

Name: MDVSA-2010:228

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2010:228

External Source: DEBIAN

Name: DSA-2135

Hyperlink:http://www.debian.org/security/2010/dsa-2135

External Source: DEBIAN

Name: DSA-2119

Hyperlink:http://www.debian.org/security/2010/dsa-2119

External Source: SLACKWARE

Name: SSA:2010-324-01

Hyperlink:http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.571720

External Source: SECUNIA

Name: 43079

Hyperlink:http://secunia.com/advisories/43079

External Source: SECUNIA

Name: 42691

Hyperlink:http://secunia.com/advisories/42691

External Source: SECUNIA

Name: 42397

Hyperlink:http://secunia.com/advisories/42397

External Source: SECUNIA

Name: 42357

Hyperlink:http://secunia.com/advisories/42357

External Source: SECUNIA

Name: 42141

Hyperlink:http://secunia.com/advisories/42141

External Source: REDHAT

Name: RHSA-2012:1201

Hyperlink:http://rhn.redhat.com/errata/RHSA-2012-1201.html

External Source: SUSE

Name: SUSE-SR:2010:024

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html

External Source: SUSE

Name: SUSE-SR:2010:022

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00006.html

External Source: FEDORA

Name: FEDORA-2010-15981

Hyperlink:http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049545.html

External Source: FEDORA

Name: FEDORA-2010-15911

Hyperlink:http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049523.html

External Source: FEDORA

Name: FEDORA-2010-15857

Hyperlink:http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049392.html

External Source: FEDORA

Name: FEDORA-2010-16705

Hyperlink:http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050390.html

External Source: FEDORA

Name: FEDORA-2010-16662

Hyperlink:http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050285.html

External Source: FEDORA

Name: FEDORA-2010-16744

Hyperlink:http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050268.html