CVE-2004-0888

Published: 27 January 2005

Multiple integer overflows in xpdf 2.0 and 3.0, and other packages that use xpdf code such as CUPS, gpdf, and kdegraphics, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a different set of vulnerabilities than those identified by CVE-2004-0889.

Priority

Unknown

Status

Package Release Status
cupsys
Launchpad, Ubuntu, Debian
Upstream Needs triage

gpdf
Launchpad, Ubuntu, Debian
Upstream Needs triage

kdegraphics
Launchpad, Ubuntu, Debian
Upstream Needs triage

koffice
Launchpad, Ubuntu, Debian
Upstream Needs triage

pdftohtml
Launchpad, Ubuntu, Debian
Upstream Needs triage

tetex-bin
Launchpad, Ubuntu, Debian
Upstream Needs triage