Bug 24294

Summary: Multiple vulnerabilities: CVE-2010-3702, CVE-2010-3704
Product: Sisyphus Reporter: Vladimir Lettiev <crux>
Component: xpdfAssignee: Andrew Savchenko <bircoph>
Status: CLOSED FIXED QA Contact: qa-sisyphus
Severity: blocker    
Priority: P3 CC: bircoph, qa-p5
Version: unstableKeywords: security
Hardware: all   
OS: Linux   
URL: http://secunia.com/advisories/41596/

Description Vladimir Lettiev 2010-10-14 09:08:33 MSD
+++ Данная ошибка создана размножением ошибки 24286 +++

1) An error in "Gfx::getPos()" can be exploited to dereference an uninitialised pointer.

2) An array indexing error exists when parsing Type1 fonts in "FoFiType1::parse()", which can be exploited to corrupt memory via a specially crafted PDF file.

Comment 1 Vladimir Lettiev 2010-10-20 09:38:10 MSD
xpdf-3.02-alt10 -> sisyphus:

* Thu Oct 14 2010 Victor Forsiuk <force@altlinux> 3.02-alt10
- Security fixes: CVE-2010-3702, CVE-2010-3704.