CVE-2006-0301

Published: 30 January 2006

Heap-based buffer overflow in Splash.cc in xpdf, as used in other products such as (1) poppler, (2) kdegraphics, (3) gpdf, (4) pdfkit.framework, and others, allows attackers to cause a denial of service and possibly execute arbitrary code via crafted splash images that produce certain values that exceed the width or height of the associated bitmap.

Priority

Status

Package	Release	Status
gpdf Launchpad, Ubuntu, Debian	Upstream	Needs triage






kdegraphics Launchpad, Ubuntu, Debian	Upstream	Needs triage






libextractor Launchpad, Ubuntu, Debian	Upstream	Needs triage






pdftohtml Launchpad, Ubuntu, Debian	Upstream	Needs triage






poppler Launchpad, Ubuntu, Debian	Upstream	Needs triage






xpdf Launchpad, Ubuntu, Debian	Upstream	Needs triage

References

https://usn.ubuntu.com/usn/usn-249-1
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0301
NVD
Launchpad
Debian

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Extended Security Maintenance

Canonical is offering Ubuntu 14.04 Extended Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM

CVE-2006-0301

Unknown

Status

References

Join the discussion

Canonical is offering Extended Security Maintenance

Further reading