Bug 24294 - Multiple vulnerabilities: CVE-2010-3702, CVE-2010-3704
Summary: Multiple vulnerabilities: CVE-2010-3702, CVE-2010-3704
Status: CLOSED FIXED
Alias: None
Product: Sisyphus
Classification: Development
Component: xpdf (show other bugs)
Version: unstable
Hardware: all Linux
: P3 blocker
Assignee: Andrew Savchenko
QA Contact: qa-sisyphus
URL: http://secunia.com/advisories/41596/
Keywords: security
Depends on:
Blocks:
 
Reported: 2010-10-14 09:08 MSD by Vladimir Lettiev
Modified: 2010-10-20 18:20 MSD (History)
2 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Vladimir Lettiev 2010-10-14 09:08:33 MSD 
+++ Данная ошибка создана размножением ошибки 24286 +++

1) An error in "Gfx::getPos()" can be exploited to dereference an uninitialised pointer.

2) An array indexing error exists when parsing Type1 fonts in "FoFiType1::parse()", which can be exploited to corrupt memory via a specially crafted PDF file.

https://rhn.redhat.com/errata/RHSA-2010-0751.html
Comment 1 Vladimir Lettiev 2010-10-20 09:38:10 MSD 
xpdf-3.02-alt10 -> sisyphus:

* Thu Oct 14 2010 Victor Forsiuk <force@altlinux> 3.02-alt10
- Security fixes: CVE-2010-3702, CVE-2010-3704.