Action not permitted
Modal body text goes here.
cve-2009-3609
Vulnerability from cvelistv5
Published
2009-10-21 17:00
Modified
2024-08-07 06:31
Severity ?
EPSS score ?
Summary
Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-07T06:31:10.540Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "39938", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/39938" }, { "name": "RHSA-2009:1504", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1504.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl4.patch" }, { "name": "MDVSA-2009:287", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:287" }, { "name": "37028", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/37028" }, { "name": "FEDORA-2010-1377", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035408.html" }, { "name": "FEDORA-2009-10823", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00750.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://poppler.freedesktop.org/" }, { "name": "RHSA-2009:1501", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1501.html" }, { "name": "37079", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/37079" }, { "name": "SUSE-SR:2009:018", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html" }, { "name": "oval:org.mitre.oval:def:8134", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8134" }, { "name": "DSA-2028", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "http://www.debian.org/security/2010/dsa-2028" }, { "name": "DSA-2050", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "http://www.debian.org/security/2010/dsa-2050" }, { "name": "37159", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/37159" }, { "name": "37054", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/37054" }, { "name": "FEDORA-2010-1805", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035340.html" }, { "name": "1021706", "tags": [ "vendor-advisory", "x_refsource_SUNALERT", "x_transferred" ], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021706.1-1" }, { "name": "FEDORA-2009-10845", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00784.html" }, { "name": "RHSA-2009:1512", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1512.html" }, { "name": "37114", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/37114" }, { "name": "37077", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/37077" }, { "name": "oval:org.mitre.oval:def:11043", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11043" }, { "name": "1023029", "tags": [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred" ], "url": "http://securitytracker.com/id?1023029" }, { "name": "RHSA-2009:1503", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1503.html" }, { "name": "ADV-2009-2926", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2009/2926" }, { "name": "MDVSA-2011:175", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:175" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "name": "xpdf-imagestream-dos(53800)", "tags": [ "vdb-entry", "x_refsource_XF", "x_transferred" ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53800" }, { "name": "37037", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/37037" }, { "name": "USN-850-3", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "http://www.ubuntu.com/usn/USN-850-3" }, { "name": "ADV-2010-0802", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2010/0802" }, { "name": "RHSA-2009:1502", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1502.html" }, { "name": "FEDORA-2010-1842", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035399.html" }, { "name": "RHSA-2009:1500", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1500.html" }, { "name": "ADV-2009-2928", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2009/2928" }, { "name": "RHSA-2009:1513", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1513.html" }, { "name": "37034", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/37034" }, { "name": "37023", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/37023" }, { "name": "ADV-2009-2924", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2009/2924" }, { "name": "37051", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/37051" }, { "name": "274030", "tags": [ "vendor-advisory", "x_refsource_SUNALERT", "x_transferred" ], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-274030-1" }, { "name": "ADV-2010-1220", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2010/1220" }, { "name": "USN-850-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "http://www.ubuntu.com/usn/USN-850-1" }, { "name": "37061", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/37061" }, { "name": "39327", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/39327" }, { "name": "37043", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/37043" }, { "name": "36703", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/36703" }, { "name": "ADV-2009-2925", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2009/2925" }, { "name": "RHSA-2010:0755", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2010-0755.html" }, { "name": "MDVSA-2009:334", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:334" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2009-10-15T00:00:00", "descriptions": [ { "lang": "en", "value": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2017-09-18T12:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat" }, "references": [ { "name": "39938", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/39938" }, { "name": "RHSA-2009:1504", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1504.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl4.patch" }, { "name": "MDVSA-2009:287", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:287" }, { "name": "37028", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/37028" }, { "name": "FEDORA-2010-1377", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035408.html" }, { "name": "FEDORA-2009-10823", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00750.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://poppler.freedesktop.org/" }, { "name": "RHSA-2009:1501", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1501.html" }, { "name": "37079", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/37079" }, { "name": "SUSE-SR:2009:018", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html" }, { "name": "oval:org.mitre.oval:def:8134", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8134" }, { "name": "DSA-2028", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "http://www.debian.org/security/2010/dsa-2028" }, { "name": "DSA-2050", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "http://www.debian.org/security/2010/dsa-2050" }, { "name": "37159", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/37159" }, { "name": "37054", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/37054" }, { "name": "FEDORA-2010-1805", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035340.html" }, { "name": "1021706", "tags": [ "vendor-advisory", "x_refsource_SUNALERT" ], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021706.1-1" }, { "name": "FEDORA-2009-10845", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00784.html" }, { "name": "RHSA-2009:1512", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1512.html" }, { "name": "37114", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/37114" }, { "name": "37077", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/37077" }, { "name": "oval:org.mitre.oval:def:11043", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11043" }, { "name": "1023029", "tags": [ "vdb-entry", "x_refsource_SECTRACK" ], "url": "http://securitytracker.com/id?1023029" }, { "name": "RHSA-2009:1503", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1503.html" }, { "name": "ADV-2009-2926", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2009/2926" }, { "name": "MDVSA-2011:175", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:175" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "name": "xpdf-imagestream-dos(53800)", "tags": [ "vdb-entry", "x_refsource_XF" ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53800" }, { "name": "37037", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/37037" }, { "name": "USN-850-3", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "http://www.ubuntu.com/usn/USN-850-3" }, { "name": "ADV-2010-0802", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2010/0802" }, { "name": "RHSA-2009:1502", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1502.html" }, { "name": "FEDORA-2010-1842", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035399.html" }, { "name": "RHSA-2009:1500", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1500.html" }, { "name": "ADV-2009-2928", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2009/2928" }, { "name": "RHSA-2009:1513", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1513.html" }, { "name": "37034", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/37034" }, { "name": "37023", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/37023" }, { "name": "ADV-2009-2924", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2009/2924" }, { "name": "37051", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/37051" }, { "name": "274030", "tags": [ "vendor-advisory", "x_refsource_SUNALERT" ], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-274030-1" }, { "name": "ADV-2010-1220", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2010/1220" }, { "name": "USN-850-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "http://www.ubuntu.com/usn/USN-850-1" }, { "name": "37061", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/37061" }, { "name": "39327", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/39327" }, { "name": "37043", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/37043" }, { "name": "36703", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/36703" }, { "name": "ADV-2009-2925", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2009/2925" }, { "name": "RHSA-2010:0755", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2010-0755.html" }, { "name": "MDVSA-2009:334", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:334" } ] } }, "cveMetadata": { "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2009-3609", "datePublished": "2009-10-21T17:00:00", "dateReserved": "2009-10-09T00:00:00", "dateUpdated": "2024-08-07T06:31:10.540Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2009-3609\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2009-10-21T17:30:00.453\",\"lastModified\":\"2023-02-13T02:20:29.743\",\"vulnStatus\":\"Modified\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de entero en la funci\u00f3n ImageStream::ImageStream en Stream.cc en Xpdf v3.02pl4 y Poppler v0.12.1, usado en GPdf, kdegraphics KPDF, y CUPS pdftops, permite a atacantes remotsos provocar una denegaci\u00f3n de servicio (ca\u00edda de aplicaci\u00f3n) a trav\u00e9s de un documento PDF manipulado que provoca un deferencia a puntero nulo o un desbordamiento de b\u00fafer fuera del l\u00edmite (over-read).\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:P\",\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\",\"baseScore\":4.3},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-189\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:foolabs:xpdf:3.02pl1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0BC500DA-7B3F-4CD5-BB0E-B244000CD19D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:foolabs:xpdf:3.02pl2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9D5D9CEA-0707-46FC-AEC3-9EC540B22BC3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:foolabs:xpdf:3.02pl3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD38AC59-7518-40FB-BC29-EC64142DE682\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:glyphandcog:xpdfreader:3.00:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"15D08CFD-BEE1-4DEE-926D-F4291F88224D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:glyphandcog:xpdfreader:3.01:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D244903F-5407-4C35-AE2C-1A05D3C227D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:glyphandcog:xpdfreader:3.02:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F7D4E256-FF91-47BA-B1D4-940FB2D970AF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"0.12.0\",\"matchCriteriaId\":\"C16CA37E-F28E-47E6-B77B-4CB0A859F831\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E23EBF88-10DE-4EA6-9F0E-F33C88541F65\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"54F75CFD-3523-4017-992C-4FA6406D49F2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB116A19-6436-40BE-B5C6-32C22D888B9A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A4C1429-593B-47B6-AC84-832F2296FAB5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"18240BA6-3390-4925-AC25-DA4C42397CF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3090A142-2240-4A8D-A122-C037931A277C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EFD63240-4599-4212-8AF2-7C4089CA9D28\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3C7EE965-EE3F-4B17-AF38-FA3AA0B11164\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7BE488E5-B3D9-4723-ABBA-A8753EC2DA2D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1259C59E-517F-40BE-8BA6-01AB76257C9A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63C92F1C-3005-4EA6-B9C0-2BC2E3D611D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"576152B4-9ACD-4C4E-B423-4A5EF44332D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"322F9E62-6A74-4805-8F6B-9C61739B2D4E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F51C453F-6A87-49FB-83F6-22316F28161F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"75F532F0-6653-4275-A85A-BD9A9A611E96\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4CC7300E-0CBE-47FD-A241-B4B4F0164EBB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.5.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"255102DA-A2C0-4795-9539-B4CBD587554A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.5.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"349B06F1-772A-4A12-A7B9-EA220ED96D2C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.5.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B779800A-FF4B-47DD-B56F-77D10D6A335C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"178680C2-DB1B-4250-9B6E-6ADABA60DE44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FCA9036F-92DA-45C2-9FBC-DE03444D34F1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B6855B98-DAA2-4850-A765-2F4D6D93A424\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.6.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4743EC55-B61D-4C1A-9ED7-060268F2DB27\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.6.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8CD4454E-3D2B-4582-B5E5-0317A6417654\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"96402B67-A7A8-44E3-914E-A10A69FAD735\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"66C608C8-F382-4D6B-A638-98763C1CBB66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"21F0F4E0-91B7-4B1F-BFA9-829101A7F90A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"22287102-80B1-4E1F-85E4-488B020A51E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF3030D6-DE07-418B-AB40-87C85FCA3C58\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3583D56-F653-457A-B1F8-25842A15CB82\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6EEA5DBB-5A80-439E-A135-77CB40772916\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.8.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D4A5C43B-3978-4D0A-8166-A99622106781\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.8.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A940AF2-A7CA-408F-86E2-797C7BA8A6BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.8.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AA56CB7C-E7B3-4F0B-8BEB-F133FAF0D6FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.8.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6323ED7A-6FE8-4885-B743-3E2F82ECA08B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"90D3345C-2D35-413C-B6F9-C308BC7C2AA6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.9.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"26216EEC-26B7-41C8-ADFB-64D2EA8DAA8F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.9.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A9D3618D-A183-4B09-9CA2-8D622C3486DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.9.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A88294D9-563E-4AB3-9FE6-971F43B052B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A39F672-B238-4B21-A48E-5121771949F3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.10.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"58A5D199-E952-44B5-B5E5-170040FA813E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.10.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"349B4B75-32E2-49FB-9606-8B057AFA2E3E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.10.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"55A8D058-224E-467E-AB61-06F90B541F24\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.10.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"77C47EDD-2212-4259-8229-FF05E1A7B5AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.10.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C52995D0-0986-427F-B37D-2F6726EA330D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.10.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E4427C5-DBF0-4EF9-8B7A-61D56C14E3FB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.10.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B91206CA-7EBE-4E64-9A49-D7EC0D051012\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BFD43644-7F02-42AF-8EC3-C326A13E2F89\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.11.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"81FE2E6F-44B2-42D5-B986-D1FE2B510968\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.11.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A605079-3705-4E2C-8F6D-C21B4D875817\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:poppler:poppler:0.11.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3ABBD590-8092-4920-BBC7-F3ACB9CCC900\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:glyph_and_cog:pdftops:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1833267E-3B18-4CF8-B996-6226D5439F5F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:gnome:gpdf:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E4A9A98B-5E37-4938-9506-927E0C8FACB8\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:a:kde:kpdf:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"41EF2714-DEC9-407F-9D1B-EF2A4D8B4DC3\"}]}]}],\"references\":[{\"url\":\"ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl4.patch\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\"]},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035340.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035399.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035408.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://poppler.freedesktop.org/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/37023\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/37028\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/37034\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/37037\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/37043\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/37051\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/37054\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/37061\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/37077\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/37079\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/37114\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/37159\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/39327\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/39938\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://securitytracker.com/id?1023029\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://sunsolve.sun.com/search/document.do?assetkey=1-66-274030-1\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021706.1-1\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.debian.org/security/2010/dsa-2028\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.debian.org/security/2010/dsa-2050\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:287\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:334\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2011:175\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2010-0755.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/36703\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\",\"Patch\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-850-1\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.ubuntu.com/usn/USN-850-3\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2009/2924\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2009/2925\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2009/2926\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2009/2928\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2010/0802\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2010/1220\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=526893\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\",\"Patch\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/53800\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11043\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8134\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://rhn.redhat.com/errata/RHSA-2009-1500.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://rhn.redhat.com/errata/RHSA-2009-1501.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://rhn.redhat.com/errata/RHSA-2009-1502.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://rhn.redhat.com/errata/RHSA-2009-1503.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://rhn.redhat.com/errata/RHSA-2009-1504.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://rhn.redhat.com/errata/RHSA-2009-1512.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://rhn.redhat.com/errata/RHSA-2009-1513.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00750.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00784.html\",\"source\":\"secalert@redhat.com\"}]}}" } }
rhsa-2009_1503
Vulnerability from csaf_redhat
Published
2009-10-15 08:45
Modified
2024-11-22 03:04
Summary
Red Hat Security Advisory: gpdf security update
Notes
Topic
An updated gpdf package that fixes multiple security issues is now
available for Red Hat Enterprise Linux 4.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
GPdf is a viewer for Portable Document Format (PDF) files.
Multiple integer overflow flaws were found in GPdf. An attacker could
create a malicious PDF file that would cause GPdf to crash or, potentially,
execute arbitrary code when opened. (CVE-2009-0791, CVE-2009-1188,
CVE-2009-3604, CVE-2009-3608, CVE-2009-3609)
Red Hat would like to thank Adam Zabrocki for reporting the CVE-2009-3604
issue, and Chris Rohlf for reporting the CVE-2009-3608 issue.
Users are advised to upgrade to this updated package, which contains a
backported patch to correct these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An updated gpdf package that fixes multiple security issues is now\navailable for Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "GPdf is a viewer for Portable Document Format (PDF) files.\n\nMultiple integer overflow flaws were found in GPdf. An attacker could\ncreate a malicious PDF file that would cause GPdf to crash or, potentially,\nexecute arbitrary code when opened. (CVE-2009-0791, CVE-2009-1188,\nCVE-2009-3604, CVE-2009-3608, CVE-2009-3609)\n\nRed Hat would like to thank Adam Zabrocki for reporting the CVE-2009-3604\nissue, and Chris Rohlf for reporting the CVE-2009-3608 issue.\n\nUsers are advised to upgrade to this updated package, which contains a\nbackported patch to correct these issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2009:1503", "url": "https://access.redhat.com/errata/RHSA-2009:1503" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "491840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491840" }, { "category": "external", "summary": "495907", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495907" }, { "category": "external", "summary": "526637", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526637" }, { "category": "external", "summary": "526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "526911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526911" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1503.json" } ], "title": "Red Hat Security Advisory: gpdf security update", "tracking": { "current_release_date": "2024-11-22T03:04:08+00:00", "generator": { "date": "2024-11-22T03:04:08+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2009:1503", "initial_release_date": "2009-10-15T08:45:00+00:00", "revision_history": [ { "date": "2009-10-15T08:45:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2009-10-15T04:48:32+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:04:08+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AS version 4", "product": { "name": "Red Hat Enterprise Linux AS version 4", "product_id": "4AS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::as" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop version 4", "product": { "name": "Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::desktop" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 4", "product": { "name": "Red Hat Enterprise Linux ES version 4", "product_id": "4ES", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 4", "product": { "name": "Red Hat Enterprise Linux WS version 4", "product_id": "4WS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "product": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "product_id": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/gpdf-debuginfo@2.8.2-7.7.2.el4_8.5?arch=ia64" } } }, { "category": "product_version", "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "product": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "product_id": "gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/gpdf@2.8.2-7.7.2.el4_8.5?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "product": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "product_id": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/gpdf-debuginfo@2.8.2-7.7.2.el4_8.5?arch=x86_64" } } }, { "category": "product_version", "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "product": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "product_id": "gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/gpdf@2.8.2-7.7.2.el4_8.5?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "product": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "product_id": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/gpdf-debuginfo@2.8.2-7.7.2.el4_8.5?arch=i386" } } }, { "category": "product_version", "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "product": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "product_id": "gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/gpdf@2.8.2-7.7.2.el4_8.5?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.src", "product": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.src", "product_id": "gpdf-0:2.8.2-7.7.2.el4_8.5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/gpdf@2.8.2-7.7.2.el4_8.5?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "product": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "product_id": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/gpdf-debuginfo@2.8.2-7.7.2.el4_8.5?arch=ppc" } } }, { "category": "product_version", "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "product": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "product_id": "gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/gpdf@2.8.2-7.7.2.el4_8.5?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "product": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "product_id": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/gpdf-debuginfo@2.8.2-7.7.2.el4_8.5?arch=s390x" } } }, { "category": "product_version", "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "product": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "product_id": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/gpdf@2.8.2-7.7.2.el4_8.5?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "product": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "product_id": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/gpdf-debuginfo@2.8.2-7.7.2.el4_8.5?arch=s390" } } }, { "category": "product_version", "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "product": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "product_id": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/gpdf@2.8.2-7.7.2.el4_8.5?arch=s390" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.src as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.src" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.src", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.i386" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.src as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.src" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.src", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.i386" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.src as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.src" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.src", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.src as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.src" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.src", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64" }, "product_reference": "gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" }, "product_reference": "gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "relates_to_product_reference": "4WS" } ] }, "vulnerabilities": [ { "cve": "CVE-2009-0791", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-03-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "491840" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops filter in CUPS 1.1.17, 1.1.22, and 1.3.7, GPdf, and kdegraphics KPDF, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file that triggers a heap-based buffer overflow, possibly related to (1) Decrypt.cxx, (2) FoFiTrueType.cxx, (3) gmem.c, (4) JBIG2Stream.cxx, and (5) PSOutputDev.cxx in pdftops/. NOTE: the JBIG2Stream.cxx vector may overlap CVE-2009-1179.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: multiple integer overflows", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0791" }, { "category": "external", "summary": "RHBZ#491840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491840" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0791", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0791" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0791", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0791" } ], "release_date": "2009-05-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:45:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1503" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "xpdf: multiple integer overflows" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-1188", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495907" } ], "notes": [ { "category": "description", "text": "Integer overflow in the JBIG2 decoding feature in the SplashBitmap::SplashBitmap function in SplashBitmap.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.10.6, as used in GPdf and kdegraphics KPDF, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: SplashBitmap integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1188" }, { "category": "external", "summary": "RHBZ#495907", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495907" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1188", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1188" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1188", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1188" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:45:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1503" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: SplashBitmap integer overflow" }, { "acknowledgments": [ { "names": [ "Adam Zabrocki" ] } ], "cve": "CVE-2009-3604", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526911" } ], "notes": [ { "category": "description", "text": "The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document that triggers a NULL pointer dereference or a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: Splash:: drawImage integer overflow and missing allocation return value check", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3604" }, { "category": "external", "summary": "RHBZ#526911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526911" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3604", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3604" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3604", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3604" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:45:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1503" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: Splash:: drawImage integer overflow and missing allocation return value check" }, { "acknowledgments": [ { "names": [ "Chris Rohlf" ] } ], "cve": "CVE-2009-3608", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-09-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526637" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: integer overflow in ObjectStream::ObjectStream (oCERT-2009-016)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3608" }, { "category": "external", "summary": "RHBZ#526637", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526637" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3608", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3608" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3608", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3608" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:45:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1503" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: integer overflow in ObjectStream::ObjectStream (oCERT-2009-016)" }, { "cve": "CVE-2009-3609", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-06-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526893" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: ImageStream:: ImageStream integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3609" }, { "category": "external", "summary": "RHBZ#526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3609", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3609" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:45:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1503" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4AS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4AS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4Desktop:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4Desktop:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4ES:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4ES:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.src", "4WS:gpdf-0:2.8.2-7.7.2.el4_8.5.x86_64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.i386", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ia64", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.ppc", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.s390x", "4WS:gpdf-debuginfo-0:2.8.2-7.7.2.el4_8.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "xpdf/poppler: ImageStream:: ImageStream integer overflow" } ] }
rhsa-2009_1512
Vulnerability from csaf_redhat
Published
2009-10-15 09:05
Modified
2024-11-22 03:22
Summary
Red Hat Security Advisory: kdegraphics security update
Notes
Topic
Updated kdegraphics packages that fix multiple security issues are now
available for Red Hat Enterprise Linux 4.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
The kdegraphics packages contain applications for the K Desktop
Environment, including KPDF, a viewer for Portable Document Format (PDF)
files.
Multiple integer overflow flaws were found in KPDF. An attacker could
create a malicious PDF file that would cause KPDF to crash or, potentially,
execute arbitrary code when opened. (CVE-2009-0791, CVE-2009-1188,
CVE-2009-3604, CVE-2009-3608, CVE-2009-3609)
Red Hat would like to thank Adam Zabrocki for reporting the CVE-2009-3604
issue, and Chris Rohlf for reporting the CVE-2009-3608 issue.
Users are advised to upgrade to these updated packages, which contain a
backported patch to resolve these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kdegraphics packages that fix multiple security issues are now\navailable for Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "The kdegraphics packages contain applications for the K Desktop\nEnvironment, including KPDF, a viewer for Portable Document Format (PDF)\nfiles.\n\nMultiple integer overflow flaws were found in KPDF. An attacker could\ncreate a malicious PDF file that would cause KPDF to crash or, potentially,\nexecute arbitrary code when opened. (CVE-2009-0791, CVE-2009-1188,\nCVE-2009-3604, CVE-2009-3608, CVE-2009-3609)\n\nRed Hat would like to thank Adam Zabrocki for reporting the CVE-2009-3604\nissue, and Chris Rohlf for reporting the CVE-2009-3608 issue.\n\nUsers are advised to upgrade to these updated packages, which contain a\nbackported patch to resolve these issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2009:1512", "url": "https://access.redhat.com/errata/RHSA-2009:1512" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "491840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491840" }, { "category": "external", "summary": "495907", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495907" }, { "category": "external", "summary": "526637", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526637" }, { "category": "external", "summary": "526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "526911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526911" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1512.json" } ], "title": "Red Hat Security Advisory: kdegraphics security update", "tracking": { "current_release_date": "2024-11-22T03:22:44+00:00", "generator": { "date": "2024-11-22T03:22:44+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2009:1512", "initial_release_date": "2009-10-15T09:05:00+00:00", "revision_history": [ { "date": "2009-10-15T09:05:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2009-10-15T05:05:55+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:22:44+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AS version 4", "product": { "name": "Red Hat Enterprise Linux AS version 4", "product_id": "4AS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::as" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop version 4", "product": { "name": "Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::desktop" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 4", "product": { "name": "Red Hat Enterprise Linux ES version 4", "product_id": "4ES", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 4", "product": { "name": "Red Hat Enterprise Linux WS version 4", "product_id": "4WS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "product": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "product_id": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics-debuginfo@3.3.1-15.el4_8.2?arch=ia64\u0026epoch=7" } } }, { "category": "product_version", "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "product": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "product_id": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics-devel@3.3.1-15.el4_8.2?arch=ia64\u0026epoch=7" } } }, { "category": "product_version", "name": "kdegraphics-7:3.3.1-15.el4_8.2.ia64", "product": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.ia64", "product_id": "kdegraphics-7:3.3.1-15.el4_8.2.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics@3.3.1-15.el4_8.2?arch=ia64\u0026epoch=7" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "product": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "product_id": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics-debuginfo@3.3.1-15.el4_8.2?arch=x86_64\u0026epoch=7" } } }, { "category": "product_version", "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "product": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "product_id": "kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics-devel@3.3.1-15.el4_8.2?arch=x86_64\u0026epoch=7" } } }, { "category": "product_version", "name": "kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "product": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "product_id": "kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics@3.3.1-15.el4_8.2?arch=x86_64\u0026epoch=7" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "product": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "product_id": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics-debuginfo@3.3.1-15.el4_8.2?arch=i386\u0026epoch=7" } } }, { "category": "product_version", "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "product": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "product_id": "kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics-devel@3.3.1-15.el4_8.2?arch=i386\u0026epoch=7" } } }, { "category": "product_version", "name": "kdegraphics-7:3.3.1-15.el4_8.2.i386", "product": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.i386", "product_id": "kdegraphics-7:3.3.1-15.el4_8.2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics@3.3.1-15.el4_8.2?arch=i386\u0026epoch=7" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "kdegraphics-7:3.3.1-15.el4_8.2.src", "product": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.src", "product_id": "kdegraphics-7:3.3.1-15.el4_8.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics@3.3.1-15.el4_8.2?arch=src\u0026epoch=7" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "product": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "product_id": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics-debuginfo@3.3.1-15.el4_8.2?arch=ppc\u0026epoch=7" } } }, { "category": "product_version", "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "product": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "product_id": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics-devel@3.3.1-15.el4_8.2?arch=ppc\u0026epoch=7" } } }, { "category": "product_version", "name": "kdegraphics-7:3.3.1-15.el4_8.2.ppc", "product": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.ppc", "product_id": "kdegraphics-7:3.3.1-15.el4_8.2.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics@3.3.1-15.el4_8.2?arch=ppc\u0026epoch=7" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "product": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "product_id": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics-debuginfo@3.3.1-15.el4_8.2?arch=s390x\u0026epoch=7" } } }, { "category": "product_version", "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "product": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "product_id": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics-devel@3.3.1-15.el4_8.2?arch=s390x\u0026epoch=7" } } }, { "category": "product_version", "name": "kdegraphics-7:3.3.1-15.el4_8.2.s390x", "product": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.s390x", "product_id": "kdegraphics-7:3.3.1-15.el4_8.2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics@3.3.1-15.el4_8.2?arch=s390x\u0026epoch=7" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "product": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "product_id": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics-debuginfo@3.3.1-15.el4_8.2?arch=s390\u0026epoch=7" } } }, { "category": "product_version", "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "product": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "product_id": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics-devel@3.3.1-15.el4_8.2?arch=s390\u0026epoch=7" } } }, { "category": "product_version", "name": "kdegraphics-7:3.3.1-15.el4_8.2.s390", "product": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.s390", "product_id": "kdegraphics-7:3.3.1-15.el4_8.2.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics@3.3.1-15.el4_8.2?arch=s390\u0026epoch=7" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-7:3.3.1-15.el4_8.2.i386" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ia64" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ppc" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390x" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.src as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-7:3.3.1-15.el4_8.2.src" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.src", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.i386" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ia64" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ppc" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390x" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.src as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.src" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.src", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.x86_64" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-7:3.3.1-15.el4_8.2.i386" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ia64" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ppc" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390x" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.src as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-7:3.3.1-15.el4_8.2.src" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.src", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-7:3.3.1-15.el4_8.2.x86_64" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-7:3.3.1-15.el4_8.2.i386" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ia64" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ppc" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390x" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.src as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-7:3.3.1-15.el4_8.2.src" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.src", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.3.1-15.el4_8.2.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64" }, "product_reference": "kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64" }, "product_reference": "kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" }, "product_reference": "kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "relates_to_product_reference": "4WS" } ] }, "vulnerabilities": [ { "cve": "CVE-2009-0791", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-03-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "491840" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops filter in CUPS 1.1.17, 1.1.22, and 1.3.7, GPdf, and kdegraphics KPDF, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file that triggers a heap-based buffer overflow, possibly related to (1) Decrypt.cxx, (2) FoFiTrueType.cxx, (3) gmem.c, (4) JBIG2Stream.cxx, and (5) PSOutputDev.cxx in pdftops/. NOTE: the JBIG2Stream.cxx vector may overlap CVE-2009-1179.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: multiple integer overflows", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.src", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.src", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0791" }, { "category": "external", "summary": "RHBZ#491840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491840" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0791", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0791" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0791", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0791" } ], "release_date": "2009-05-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T09:05:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.src", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.src", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1512" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.src", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.src", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "xpdf: multiple integer overflows" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-1188", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495907" } ], "notes": [ { "category": "description", "text": "Integer overflow in the JBIG2 decoding feature in the SplashBitmap::SplashBitmap function in SplashBitmap.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.10.6, as used in GPdf and kdegraphics KPDF, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: SplashBitmap integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.src", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.src", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1188" }, { "category": "external", "summary": "RHBZ#495907", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495907" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1188", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1188" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1188", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1188" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T09:05:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.src", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.src", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1512" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.src", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.src", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: SplashBitmap integer overflow" }, { "acknowledgments": [ { "names": [ "Adam Zabrocki" ] } ], "cve": "CVE-2009-3604", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526911" } ], "notes": [ { "category": "description", "text": "The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document that triggers a NULL pointer dereference or a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: Splash:: drawImage integer overflow and missing allocation return value check", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.src", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.src", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3604" }, { "category": "external", "summary": "RHBZ#526911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526911" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3604", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3604" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3604", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3604" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T09:05:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.src", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.src", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1512" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.src", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.src", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: Splash:: drawImage integer overflow and missing allocation return value check" }, { "acknowledgments": [ { "names": [ "Chris Rohlf" ] } ], "cve": "CVE-2009-3608", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-09-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526637" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: integer overflow in ObjectStream::ObjectStream (oCERT-2009-016)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.src", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.src", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3608" }, { "category": "external", "summary": "RHBZ#526637", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526637" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3608", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3608" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3608", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3608" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T09:05:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.src", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.src", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1512" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.src", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.src", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: integer overflow in ObjectStream::ObjectStream (oCERT-2009-016)" }, { "cve": "CVE-2009-3609", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-06-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526893" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: ImageStream:: ImageStream integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.src", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.src", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3609" }, { "category": "external", "summary": "RHBZ#526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3609", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3609" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T09:05:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.src", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.src", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1512" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "4AS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4AS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4AS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.src", "4Desktop:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4Desktop:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.src", "4ES:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4ES:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.src", "4WS:kdegraphics-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-debuginfo-7:3.3.1-15.el4_8.2.x86_64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.i386", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ia64", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.ppc", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.s390x", "4WS:kdegraphics-devel-7:3.3.1-15.el4_8.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "xpdf/poppler: ImageStream:: ImageStream integer overflow" } ] }
rhsa-2010_0400
Vulnerability from csaf_redhat
Published
2010-05-06 19:03
Modified
2024-11-22 03:22
Summary
Red Hat Security Advisory: tetex security update
Notes
Topic
Updated tetex packages that fix multiple security issues are now available
for Red Hat Enterprise Linux 5.
The Red Hat Security Response Team has rated this update as having moderate
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details
teTeX is an implementation of TeX. TeX takes a text file and a set of
formatting commands as input, and creates a typesetter-independent DeVice
Independent (DVI) file as output.
Multiple integer overflow flaws were found in the way teTeX processed
special commands when converting DVI files into PostScript. An attacker
could create a malicious DVI file that would cause the dvips executable to
crash or, potentially, execute arbitrary code. (CVE-2010-0739,
CVE-2010-1440)
Multiple array index errors were found in the way teTeX converted DVI files
into the Portable Network Graphics (PNG) format. An attacker could create a
malicious DVI file that would cause the dvipng executable to crash.
(CVE-2010-0829)
teTeX embeds a copy of Xpdf, an open source Portable Document Format (PDF)
file viewer, to allow adding images in PDF format to the generated PDF
documents. The following issues affect Xpdf code:
Multiple integer overflow flaws were found in Xpdf's JBIG2 decoder. If a
local user generated a PDF file from a TeX document, referencing a
specially-crafted PDF file, it would cause Xpdf to crash or, potentially,
execute arbitrary code with the privileges of the user running pdflatex.
(CVE-2009-0147, CVE-2009-1179)
Multiple integer overflow flaws were found in Xpdf. If a local user
generated a PDF file from a TeX document, referencing a specially-crafted
PDF file, it would cause Xpdf to crash or, potentially, execute arbitrary
code with the privileges of the user running pdflatex. (CVE-2009-0791,
CVE-2009-3608, CVE-2009-3609)
A heap-based buffer overflow flaw was found in Xpdf's JBIG2 decoder. If a
local user generated a PDF file from a TeX document, referencing a
specially-crafted PDF file, it would cause Xpdf to crash or, potentially,
execute arbitrary code with the privileges of the user running pdflatex.
(CVE-2009-0195)
Multiple buffer overflow flaws were found in Xpdf's JBIG2 decoder. If a
local user generated a PDF file from a TeX document, referencing a
specially-crafted PDF file, it would cause Xpdf to crash or, potentially,
execute arbitrary code with the privileges of the user running pdflatex.
(CVE-2009-0146, CVE-2009-1182)
Multiple flaws were found in Xpdf's JBIG2 decoder that could lead to the
freeing of arbitrary memory. If a local user generated a PDF file from a
TeX document, referencing a specially-crafted PDF file, it would cause
Xpdf to crash or, potentially, execute arbitrary code with the privileges
of the user running pdflatex. (CVE-2009-0166, CVE-2009-1180)
Multiple input validation flaws were found in Xpdf's JBIG2 decoder. If a
local user generated a PDF file from a TeX document, referencing a
specially-crafted PDF file, it would cause Xpdf to crash or, potentially,
execute arbitrary code with the privileges of the user running pdflatex.
(CVE-2009-0800)
Multiple denial of service flaws were found in Xpdf's JBIG2 decoder. If a
local user generated a PDF file from a TeX document, referencing a
specially-crafted PDF file, it would cause Xpdf to crash. (CVE-2009-0799,
CVE-2009-1181, CVE-2009-1183)
Red Hat would like to thank Braden Thomas and Drew Yao of the Apple Product
Security team, Will Dormann of the CERT/CC, Alin Rad Pop of Secunia
Research, and Chris Rohlf, for responsibly reporting the Xpdf flaws.
All users of tetex are advised to upgrade to these updated packages, which
contain backported patches to correct these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated tetex packages that fix multiple security issues are now available\nfor Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "teTeX is an implementation of TeX. TeX takes a text file and a set of\nformatting commands as input, and creates a typesetter-independent DeVice\nIndependent (DVI) file as output.\n\nMultiple integer overflow flaws were found in the way teTeX processed\nspecial commands when converting DVI files into PostScript. An attacker\ncould create a malicious DVI file that would cause the dvips executable to\ncrash or, potentially, execute arbitrary code. (CVE-2010-0739,\nCVE-2010-1440)\n\nMultiple array index errors were found in the way teTeX converted DVI files\ninto the Portable Network Graphics (PNG) format. An attacker could create a\nmalicious DVI file that would cause the dvipng executable to crash.\n(CVE-2010-0829)\n\nteTeX embeds a copy of Xpdf, an open source Portable Document Format (PDF)\nfile viewer, to allow adding images in PDF format to the generated PDF\ndocuments. The following issues affect Xpdf code:\n\nMultiple integer overflow flaws were found in Xpdf\u0027s JBIG2 decoder. If a\nlocal user generated a PDF file from a TeX document, referencing a\nspecially-crafted PDF file, it would cause Xpdf to crash or, potentially,\nexecute arbitrary code with the privileges of the user running pdflatex.\n(CVE-2009-0147, CVE-2009-1179)\n\nMultiple integer overflow flaws were found in Xpdf. If a local user\ngenerated a PDF file from a TeX document, referencing a specially-crafted\nPDF file, it would cause Xpdf to crash or, potentially, execute arbitrary\ncode with the privileges of the user running pdflatex. (CVE-2009-0791,\nCVE-2009-3608, CVE-2009-3609)\n\nA heap-based buffer overflow flaw was found in Xpdf\u0027s JBIG2 decoder. If a\nlocal user generated a PDF file from a TeX document, referencing a\nspecially-crafted PDF file, it would cause Xpdf to crash or, potentially,\nexecute arbitrary code with the privileges of the user running pdflatex.\n(CVE-2009-0195)\n\nMultiple buffer overflow flaws were found in Xpdf\u0027s JBIG2 decoder. If a\nlocal user generated a PDF file from a TeX document, referencing a\nspecially-crafted PDF file, it would cause Xpdf to crash or, potentially,\nexecute arbitrary code with the privileges of the user running pdflatex.\n(CVE-2009-0146, CVE-2009-1182)\n\nMultiple flaws were found in Xpdf\u0027s JBIG2 decoder that could lead to the\nfreeing of arbitrary memory. If a local user generated a PDF file from a\nTeX document, referencing a specially-crafted PDF file, it would cause\nXpdf to crash or, potentially, execute arbitrary code with the privileges\nof the user running pdflatex. (CVE-2009-0166, CVE-2009-1180)\n\nMultiple input validation flaws were found in Xpdf\u0027s JBIG2 decoder. If a\nlocal user generated a PDF file from a TeX document, referencing a\nspecially-crafted PDF file, it would cause Xpdf to crash or, potentially,\nexecute arbitrary code with the privileges of the user running pdflatex.\n(CVE-2009-0800)\n\nMultiple denial of service flaws were found in Xpdf\u0027s JBIG2 decoder. If a\nlocal user generated a PDF file from a TeX document, referencing a\nspecially-crafted PDF file, it would cause Xpdf to crash. (CVE-2009-0799,\nCVE-2009-1181, CVE-2009-1183)\n\nRed Hat would like to thank Braden Thomas and Drew Yao of the Apple Product\nSecurity team, Will Dormann of the CERT/CC, Alin Rad Pop of Secunia\nResearch, and Chris Rohlf, for responsibly reporting the Xpdf flaws.\n\nAll users of tetex are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2010:0400", "url": "https://access.redhat.com/errata/RHSA-2010:0400" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "490612", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=490612" }, { "category": "external", "summary": "490614", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=490614" }, { "category": "external", "summary": "490625", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=490625" }, { "category": "external", "summary": "491840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491840" }, { "category": "external", "summary": "495886", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495886" }, { "category": "external", "summary": "495887", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495887" }, { "category": "external", "summary": "495889", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495889" }, { "category": "external", "summary": "495892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495892" }, { "category": "external", "summary": "495894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495894" }, { "category": "external", "summary": "495896", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495896" }, { "category": "external", "summary": "495899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495899" }, { "category": "external", "summary": "526637", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526637" }, { "category": "external", "summary": "526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "572941", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=572941" }, { "category": "external", "summary": "573999", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=573999" }, { "category": "external", "summary": "586819", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=586819" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0400.json" } ], "title": "Red Hat Security Advisory: tetex security update", "tracking": { "current_release_date": "2024-11-22T03:22:59+00:00", "generator": { "date": "2024-11-22T03:22:59+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2010:0400", "initial_release_date": "2010-05-06T19:03:00+00:00", "revision_history": [ { "date": "2010-05-06T19:03:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2010-05-06T15:09:35+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:22:59+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "product": { "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "product_id": "tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@3.0-33.8.el5_5.5?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "product": { "name": "tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "product_id": "tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@3.0-33.8.el5_5.5?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "product": { "name": "tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "product_id": "tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-doc@3.0-33.8.el5_5.5?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-0:3.0-33.8.el5_5.5.x86_64", "product": { "name": "tetex-0:3.0-33.8.el5_5.5.x86_64", "product_id": "tetex-0:3.0-33.8.el5_5.5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@3.0-33.8.el5_5.5?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "product": { "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "product_id": "tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@3.0-33.8.el5_5.5?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "product": { "name": "tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "product_id": "tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@3.0-33.8.el5_5.5?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "product": { "name": "tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "product_id": "tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@3.0-33.8.el5_5.5?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "product": { "name": "tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "product_id": "tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@3.0-33.8.el5_5.5?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "product": { "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "product_id": "tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@3.0-33.8.el5_5.5?arch=i386" } } }, { "category": "product_version", "name": "tetex-fonts-0:3.0-33.8.el5_5.5.i386", "product": { "name": "tetex-fonts-0:3.0-33.8.el5_5.5.i386", "product_id": "tetex-fonts-0:3.0-33.8.el5_5.5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@3.0-33.8.el5_5.5?arch=i386" } } }, { "category": "product_version", "name": "tetex-doc-0:3.0-33.8.el5_5.5.i386", "product": { "name": "tetex-doc-0:3.0-33.8.el5_5.5.i386", "product_id": "tetex-doc-0:3.0-33.8.el5_5.5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-doc@3.0-33.8.el5_5.5?arch=i386" } } }, { "category": "product_version", "name": "tetex-0:3.0-33.8.el5_5.5.i386", "product": { "name": "tetex-0:3.0-33.8.el5_5.5.i386", "product_id": "tetex-0:3.0-33.8.el5_5.5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@3.0-33.8.el5_5.5?arch=i386" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "product": { "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "product_id": "tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@3.0-33.8.el5_5.5?arch=i386" } } }, { "category": "product_version", "name": "tetex-latex-0:3.0-33.8.el5_5.5.i386", "product": { "name": "tetex-latex-0:3.0-33.8.el5_5.5.i386", "product_id": "tetex-latex-0:3.0-33.8.el5_5.5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@3.0-33.8.el5_5.5?arch=i386" } } }, { "category": "product_version", "name": "tetex-dvips-0:3.0-33.8.el5_5.5.i386", "product": { "name": "tetex-dvips-0:3.0-33.8.el5_5.5.i386", "product_id": "tetex-dvips-0:3.0-33.8.el5_5.5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@3.0-33.8.el5_5.5?arch=i386" } } }, { "category": "product_version", "name": "tetex-afm-0:3.0-33.8.el5_5.5.i386", "product": { "name": "tetex-afm-0:3.0-33.8.el5_5.5.i386", "product_id": "tetex-afm-0:3.0-33.8.el5_5.5.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@3.0-33.8.el5_5.5?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "tetex-0:3.0-33.8.el5_5.5.src", "product": { "name": "tetex-0:3.0-33.8.el5_5.5.src", "product_id": "tetex-0:3.0-33.8.el5_5.5.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@3.0-33.8.el5_5.5?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "product": { "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "product_id": "tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@3.0-33.8.el5_5.5?arch=ia64" } } }, { "category": "product_version", "name": "tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "product": { "name": "tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "product_id": "tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@3.0-33.8.el5_5.5?arch=ia64" } } }, { "category": "product_version", "name": "tetex-doc-0:3.0-33.8.el5_5.5.ia64", "product": { "name": "tetex-doc-0:3.0-33.8.el5_5.5.ia64", "product_id": "tetex-doc-0:3.0-33.8.el5_5.5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-doc@3.0-33.8.el5_5.5?arch=ia64" } } }, { "category": "product_version", "name": "tetex-0:3.0-33.8.el5_5.5.ia64", "product": { "name": "tetex-0:3.0-33.8.el5_5.5.ia64", "product_id": "tetex-0:3.0-33.8.el5_5.5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@3.0-33.8.el5_5.5?arch=ia64" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "product": { "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "product_id": "tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@3.0-33.8.el5_5.5?arch=ia64" } } }, { "category": "product_version", "name": "tetex-latex-0:3.0-33.8.el5_5.5.ia64", "product": { "name": "tetex-latex-0:3.0-33.8.el5_5.5.ia64", "product_id": "tetex-latex-0:3.0-33.8.el5_5.5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@3.0-33.8.el5_5.5?arch=ia64" } } }, { "category": "product_version", "name": "tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "product": { "name": "tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "product_id": "tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@3.0-33.8.el5_5.5?arch=ia64" } } }, { "category": "product_version", "name": "tetex-afm-0:3.0-33.8.el5_5.5.ia64", "product": { "name": "tetex-afm-0:3.0-33.8.el5_5.5.ia64", "product_id": "tetex-afm-0:3.0-33.8.el5_5.5.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@3.0-33.8.el5_5.5?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "product": { "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "product_id": "tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@3.0-33.8.el5_5.5?arch=ppc" } } }, { "category": "product_version", "name": "tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "product": { "name": "tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "product_id": "tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@3.0-33.8.el5_5.5?arch=ppc" } } }, { "category": "product_version", "name": "tetex-doc-0:3.0-33.8.el5_5.5.ppc", "product": { "name": "tetex-doc-0:3.0-33.8.el5_5.5.ppc", "product_id": "tetex-doc-0:3.0-33.8.el5_5.5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-doc@3.0-33.8.el5_5.5?arch=ppc" } } }, { "category": "product_version", "name": "tetex-0:3.0-33.8.el5_5.5.ppc", "product": { "name": "tetex-0:3.0-33.8.el5_5.5.ppc", "product_id": "tetex-0:3.0-33.8.el5_5.5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@3.0-33.8.el5_5.5?arch=ppc" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "product": { "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "product_id": "tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@3.0-33.8.el5_5.5?arch=ppc" } } }, { "category": "product_version", "name": "tetex-latex-0:3.0-33.8.el5_5.5.ppc", "product": { "name": "tetex-latex-0:3.0-33.8.el5_5.5.ppc", "product_id": "tetex-latex-0:3.0-33.8.el5_5.5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@3.0-33.8.el5_5.5?arch=ppc" } } }, { "category": "product_version", "name": "tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "product": { "name": "tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "product_id": "tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@3.0-33.8.el5_5.5?arch=ppc" } } }, { "category": "product_version", "name": "tetex-afm-0:3.0-33.8.el5_5.5.ppc", "product": { "name": "tetex-afm-0:3.0-33.8.el5_5.5.ppc", "product_id": "tetex-afm-0:3.0-33.8.el5_5.5.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@3.0-33.8.el5_5.5?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "product": { "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "product_id": "tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@3.0-33.8.el5_5.5?arch=s390x" } } }, { "category": "product_version", "name": "tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "product": { "name": "tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "product_id": "tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@3.0-33.8.el5_5.5?arch=s390x" } } }, { "category": "product_version", "name": "tetex-doc-0:3.0-33.8.el5_5.5.s390x", "product": { "name": "tetex-doc-0:3.0-33.8.el5_5.5.s390x", "product_id": "tetex-doc-0:3.0-33.8.el5_5.5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-doc@3.0-33.8.el5_5.5?arch=s390x" } } }, { "category": "product_version", "name": "tetex-0:3.0-33.8.el5_5.5.s390x", "product": { "name": "tetex-0:3.0-33.8.el5_5.5.s390x", "product_id": "tetex-0:3.0-33.8.el5_5.5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@3.0-33.8.el5_5.5?arch=s390x" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "product": { "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "product_id": "tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@3.0-33.8.el5_5.5?arch=s390x" } } }, { "category": "product_version", "name": "tetex-latex-0:3.0-33.8.el5_5.5.s390x", "product": { "name": "tetex-latex-0:3.0-33.8.el5_5.5.s390x", "product_id": "tetex-latex-0:3.0-33.8.el5_5.5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@3.0-33.8.el5_5.5?arch=s390x" } } }, { "category": "product_version", "name": "tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "product": { "name": "tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "product_id": "tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@3.0-33.8.el5_5.5?arch=s390x" } } }, { "category": "product_version", "name": "tetex-afm-0:3.0-33.8.el5_5.5.s390x", "product": { "name": "tetex-afm-0:3.0-33.8.el5_5.5.s390x", "product_id": "tetex-afm-0:3.0-33.8.el5_5.5.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@3.0-33.8.el5_5.5?arch=s390x" } } } ], "category": "architecture", "name": "s390x" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "tetex-0:3.0-33.8.el5_5.5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-0:3.0-33.8.el5_5.5.i386" }, "product_reference": "tetex-0:3.0-33.8.el5_5.5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:3.0-33.8.el5_5.5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-0:3.0-33.8.el5_5.5.ia64" }, "product_reference": "tetex-0:3.0-33.8.el5_5.5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:3.0-33.8.el5_5.5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-0:3.0-33.8.el5_5.5.ppc" }, "product_reference": "tetex-0:3.0-33.8.el5_5.5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:3.0-33.8.el5_5.5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-0:3.0-33.8.el5_5.5.s390x" }, "product_reference": "tetex-0:3.0-33.8.el5_5.5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:3.0-33.8.el5_5.5.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-0:3.0-33.8.el5_5.5.src" }, "product_reference": "tetex-0:3.0-33.8.el5_5.5.src", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:3.0-33.8.el5_5.5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64" }, "product_reference": "tetex-0:3.0-33.8.el5_5.5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:3.0-33.8.el5_5.5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386" }, "product_reference": "tetex-afm-0:3.0-33.8.el5_5.5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:3.0-33.8.el5_5.5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64" }, "product_reference": "tetex-afm-0:3.0-33.8.el5_5.5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:3.0-33.8.el5_5.5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc" }, "product_reference": "tetex-afm-0:3.0-33.8.el5_5.5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:3.0-33.8.el5_5.5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x" }, "product_reference": "tetex-afm-0:3.0-33.8.el5_5.5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:3.0-33.8.el5_5.5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64" }, "product_reference": "tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386" }, "product_reference": "tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64" }, "product_reference": "tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc" }, "product_reference": "tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x" }, "product_reference": "tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64" }, "product_reference": "tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:3.0-33.8.el5_5.5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386" }, "product_reference": "tetex-doc-0:3.0-33.8.el5_5.5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:3.0-33.8.el5_5.5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64" }, "product_reference": "tetex-doc-0:3.0-33.8.el5_5.5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:3.0-33.8.el5_5.5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc" }, "product_reference": "tetex-doc-0:3.0-33.8.el5_5.5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:3.0-33.8.el5_5.5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x" }, "product_reference": "tetex-doc-0:3.0-33.8.el5_5.5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:3.0-33.8.el5_5.5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64" }, "product_reference": "tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:3.0-33.8.el5_5.5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386" }, "product_reference": "tetex-dvips-0:3.0-33.8.el5_5.5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:3.0-33.8.el5_5.5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64" }, "product_reference": "tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:3.0-33.8.el5_5.5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc" }, "product_reference": "tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:3.0-33.8.el5_5.5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x" }, "product_reference": "tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:3.0-33.8.el5_5.5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64" }, "product_reference": "tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:3.0-33.8.el5_5.5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386" }, "product_reference": "tetex-fonts-0:3.0-33.8.el5_5.5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:3.0-33.8.el5_5.5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64" }, "product_reference": "tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:3.0-33.8.el5_5.5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc" }, "product_reference": "tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:3.0-33.8.el5_5.5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x" }, "product_reference": "tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:3.0-33.8.el5_5.5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64" }, "product_reference": "tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:3.0-33.8.el5_5.5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386" }, "product_reference": "tetex-latex-0:3.0-33.8.el5_5.5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:3.0-33.8.el5_5.5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64" }, "product_reference": "tetex-latex-0:3.0-33.8.el5_5.5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:3.0-33.8.el5_5.5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc" }, "product_reference": "tetex-latex-0:3.0-33.8.el5_5.5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:3.0-33.8.el5_5.5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x" }, "product_reference": "tetex-latex-0:3.0-33.8.el5_5.5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:3.0-33.8.el5_5.5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64" }, "product_reference": "tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386" }, "product_reference": "tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64" }, "product_reference": "tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc" }, "product_reference": "tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x" }, "product_reference": "tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" }, "product_reference": "tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:3.0-33.8.el5_5.5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-0:3.0-33.8.el5_5.5.i386" }, "product_reference": "tetex-0:3.0-33.8.el5_5.5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:3.0-33.8.el5_5.5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-0:3.0-33.8.el5_5.5.ia64" }, "product_reference": "tetex-0:3.0-33.8.el5_5.5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:3.0-33.8.el5_5.5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-0:3.0-33.8.el5_5.5.ppc" }, "product_reference": "tetex-0:3.0-33.8.el5_5.5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:3.0-33.8.el5_5.5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-0:3.0-33.8.el5_5.5.s390x" }, "product_reference": "tetex-0:3.0-33.8.el5_5.5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:3.0-33.8.el5_5.5.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-0:3.0-33.8.el5_5.5.src" }, "product_reference": "tetex-0:3.0-33.8.el5_5.5.src", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:3.0-33.8.el5_5.5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64" }, "product_reference": "tetex-0:3.0-33.8.el5_5.5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:3.0-33.8.el5_5.5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386" }, "product_reference": "tetex-afm-0:3.0-33.8.el5_5.5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:3.0-33.8.el5_5.5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64" }, "product_reference": "tetex-afm-0:3.0-33.8.el5_5.5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:3.0-33.8.el5_5.5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc" }, "product_reference": "tetex-afm-0:3.0-33.8.el5_5.5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:3.0-33.8.el5_5.5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x" }, "product_reference": "tetex-afm-0:3.0-33.8.el5_5.5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:3.0-33.8.el5_5.5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64" }, "product_reference": "tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386" }, "product_reference": "tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64" }, "product_reference": "tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc" }, "product_reference": "tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x" }, "product_reference": "tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64" }, "product_reference": "tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:3.0-33.8.el5_5.5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386" }, "product_reference": "tetex-doc-0:3.0-33.8.el5_5.5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:3.0-33.8.el5_5.5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64" }, "product_reference": "tetex-doc-0:3.0-33.8.el5_5.5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:3.0-33.8.el5_5.5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc" }, "product_reference": "tetex-doc-0:3.0-33.8.el5_5.5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:3.0-33.8.el5_5.5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x" }, "product_reference": "tetex-doc-0:3.0-33.8.el5_5.5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:3.0-33.8.el5_5.5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64" }, "product_reference": "tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:3.0-33.8.el5_5.5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386" }, "product_reference": "tetex-dvips-0:3.0-33.8.el5_5.5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:3.0-33.8.el5_5.5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64" }, "product_reference": "tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:3.0-33.8.el5_5.5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc" }, "product_reference": "tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:3.0-33.8.el5_5.5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x" }, "product_reference": "tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:3.0-33.8.el5_5.5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64" }, "product_reference": "tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:3.0-33.8.el5_5.5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386" }, "product_reference": "tetex-fonts-0:3.0-33.8.el5_5.5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:3.0-33.8.el5_5.5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64" }, "product_reference": "tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:3.0-33.8.el5_5.5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc" }, "product_reference": "tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:3.0-33.8.el5_5.5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x" }, "product_reference": "tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:3.0-33.8.el5_5.5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64" }, "product_reference": "tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:3.0-33.8.el5_5.5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386" }, "product_reference": "tetex-latex-0:3.0-33.8.el5_5.5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:3.0-33.8.el5_5.5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64" }, "product_reference": "tetex-latex-0:3.0-33.8.el5_5.5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:3.0-33.8.el5_5.5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc" }, "product_reference": "tetex-latex-0:3.0-33.8.el5_5.5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:3.0-33.8.el5_5.5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x" }, "product_reference": "tetex-latex-0:3.0-33.8.el5_5.5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:3.0-33.8.el5_5.5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64" }, "product_reference": "tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386" }, "product_reference": "tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64" }, "product_reference": "tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc" }, "product_reference": "tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x" }, "product_reference": "tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" }, "product_reference": "tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "relates_to_product_reference": "5Server" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Drew Yao", "Braden Thomas" ], "organization": "Apple Product Security" } ], "cve": "CVE-2009-0146", "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "490612" } ], "notes": [ { "category": "description", "text": "Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2SymbolDict::setBitmap and (2) JBIG2Stream::readSymbolDictSeg.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: Multiple buffer overflows in JBIG2 decoder (setBitmap, readSymbolDictSeg) (CVE-2009-0195)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0146" }, { "category": "external", "summary": "RHBZ#490612", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=490612" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0146", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0146" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0146", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0146" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf: Multiple buffer overflows in JBIG2 decoder (setBitmap, readSymbolDictSeg) (CVE-2009-0195)" }, { "acknowledgments": [ { "names": [ "Braden Thomas" ] }, { "names": [ "Drew Yao" ], "organization": "Apple Product Security team" } ], "cve": "CVE-2009-0147", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "490614" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2Stream::readSymbolDictSeg, (2) JBIG2Stream::readSymbolDictSeg, and (3) JBIG2Stream::readGenericBitmap.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: Multiple integer overflows in JBIG2 decoder", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0147" }, { "category": "external", "summary": "RHBZ#490614", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=490614" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0147", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0147" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0147", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0147" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf: Multiple integer overflows in JBIG2 decoder" }, { "acknowledgments": [ { "names": [ "Braden Thomas" ] }, { "names": [ "Drew Yao" ], "organization": "Apple Product Security team" } ], "cve": "CVE-2009-0166", "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "490625" } ], "notes": [ { "category": "description", "text": "The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers a free of uninitialized memory.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: Freeing of potentially uninitialized memory in JBIG2 decoder", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0166" }, { "category": "external", "summary": "RHBZ#490625", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=490625" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0166", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0166" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0166", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0166" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "xpdf: Freeing of potentially uninitialized memory in JBIG2 decoder" }, { "acknowledgments": [ { "names": [ "Drew Yao", "Braden Thomas" ], "organization": "Apple Product Security" } ], "cve": "CVE-2009-0195", "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "490612" } ], "notes": [ { "category": "description", "text": "Heap-based buffer overflow in Xpdf 3.02pl2 and earlier, CUPS 1.3.9, and probably other products, allows remote attackers to execute arbitrary code via a PDF file with crafted JBIG2 symbol dictionary segments.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: Multiple buffer overflows in JBIG2 decoder (setBitmap, readSymbolDictSeg) (CVE-2009-0195)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0195" }, { "category": "external", "summary": "RHBZ#490612", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=490612" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0195", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0195" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0195", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0195" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf: Multiple buffer overflows in JBIG2 decoder (setBitmap, readSymbolDictSeg) (CVE-2009-0195)" }, { "cve": "CVE-2009-0791", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-03-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "491840" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops filter in CUPS 1.1.17, 1.1.22, and 1.3.7, GPdf, and kdegraphics KPDF, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file that triggers a heap-based buffer overflow, possibly related to (1) Decrypt.cxx, (2) FoFiTrueType.cxx, (3) gmem.c, (4) JBIG2Stream.cxx, and (5) PSOutputDev.cxx in pdftops/. NOTE: the JBIG2Stream.cxx vector may overlap CVE-2009-1179.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: multiple integer overflows", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0791" }, { "category": "external", "summary": "RHBZ#491840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491840" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0791", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0791" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0791", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0791" } ], "release_date": "2009-05-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "xpdf: multiple integer overflows" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-0799", "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495886" } ], "notes": [ { "category": "description", "text": "The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers an out-of-bounds read.", "title": "Vulnerability description" }, { "category": "summary", "text": "PDF JBIG2 decoder OOB read", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0799" }, { "category": "external", "summary": "RHBZ#495886", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495886" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0799", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0799" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0799", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0799" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "PDF JBIG2 decoder OOB read" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-0800", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495887" } ], "notes": [ { "category": "description", "text": "Multiple \"input validation flaws\" in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file.", "title": "Vulnerability description" }, { "category": "summary", "text": "PDF JBIG2 multiple input validation flaws", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0800" }, { "category": "external", "summary": "RHBZ#495887", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495887" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0800", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0800" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0800", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0800" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "PDF JBIG2 multiple input validation flaws" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-1179", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495889" } ], "notes": [ { "category": "description", "text": "Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file.", "title": "Vulnerability description" }, { "category": "summary", "text": "PDF JBIG2 integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1179" }, { "category": "external", "summary": "RHBZ#495889", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495889" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1179", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1179" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1179", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1179" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "PDF JBIG2 integer overflow" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-1180", "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495892" } ], "notes": [ { "category": "description", "text": "The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a free of invalid data.", "title": "Vulnerability description" }, { "category": "summary", "text": "PDF JBIG2 invalid free()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1180" }, { "category": "external", "summary": "RHBZ#495892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495892" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1180", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1180" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1180", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1180" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "PDF JBIG2 invalid free()" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-1181", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495894" } ], "notes": [ { "category": "description", "text": "The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers a NULL pointer dereference.", "title": "Vulnerability description" }, { "category": "summary", "text": "PDF JBIG2 NULL dereference", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1181" }, { "category": "external", "summary": "RHBZ#495894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495894" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1181", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1181" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1181", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1181" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "PDF JBIG2 NULL dereference" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-1182", "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495896" } ], "notes": [ { "category": "description", "text": "Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file.", "title": "Vulnerability description" }, { "category": "summary", "text": "PDF JBIG2 MMR decoder buffer overflows", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1182" }, { "category": "external", "summary": "RHBZ#495896", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495896" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1182", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1182" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1182", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1182" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "PDF JBIG2 MMR decoder buffer overflows" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-1183", "cwe": { "id": "CWE-835", "name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)" }, "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495899" } ], "notes": [ { "category": "description", "text": "The JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service (infinite loop and hang) via a crafted PDF file.", "title": "Vulnerability description" }, { "category": "summary", "text": "PDF JBIG2 MMR infinite loop DoS", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1183" }, { "category": "external", "summary": "RHBZ#495899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495899" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1183", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1183" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1183", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1183" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "PDF JBIG2 MMR infinite loop DoS" }, { "acknowledgments": [ { "names": [ "Chris Rohlf" ] } ], "cve": "CVE-2009-3608", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-09-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526637" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: integer overflow in ObjectStream::ObjectStream (oCERT-2009-016)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3608" }, { "category": "external", "summary": "RHBZ#526637", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526637" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3608", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3608" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3608", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3608" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: integer overflow in ObjectStream::ObjectStream (oCERT-2009-016)" }, { "cve": "CVE-2009-3609", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-06-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526893" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: ImageStream:: ImageStream integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3609" }, { "category": "external", "summary": "RHBZ#526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3609", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3609" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "xpdf/poppler: ImageStream:: ImageStream integer overflow" }, { "cve": "CVE-2010-0739", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2010-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "572941" } ], "notes": [ { "category": "description", "text": "Integer overflow in the predospecial function in dospecial.c in dvips in (1) TeX Live and (2) teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.", "title": "Vulnerability description" }, { "category": "summary", "text": "texlive: Integer overflow by processing special commands", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0739" }, { "category": "external", "summary": "RHBZ#572941", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=572941" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0739", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0739" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0739", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0739" } ], "release_date": "2010-04-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "texlive: Integer overflow by processing special commands" }, { "cve": "CVE-2010-0829", "discovery_date": "2010-03-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "573999" } ], "notes": [ { "category": "description", "text": "Multiple array index errors in set.c in dvipng 1.11 and 1.12, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed DVI file.", "title": "Vulnerability description" }, { "category": "summary", "text": "dvipng: Multiple array index errors during DVI-to-PNG translation", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0829" }, { "category": "external", "summary": "RHBZ#573999", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=573999" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0829", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0829" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0829", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0829" } ], "release_date": "2010-03-25T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "dvipng: Multiple array index errors during DVI-to-PNG translation" }, { "cve": "CVE-2010-1440", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2010-04-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "586819" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a special command in a DVI file, related to the (1) predospecial and (2) bbdospecial functions, a different vulnerability than CVE-2010-0739.", "title": "Vulnerability description" }, { "category": "summary", "text": "texlive: Integer overflow by processing special commands", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1440" }, { "category": "external", "summary": "RHBZ#586819", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=586819" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1440", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1440" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1440", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1440" } ], "release_date": "2010-05-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:03:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0400" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:tetex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-0:3.0-33.8.el5_5.5.src", "5Client:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Client:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-0:3.0-33.8.el5_5.5.src", "5Server:tetex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-afm-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-debuginfo-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-doc-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-dvips-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-fonts-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-latex-0:3.0-33.8.el5_5.5.x86_64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.i386", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ia64", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.ppc", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.s390x", "5Server:tetex-xdvi-0:3.0-33.8.el5_5.5.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "texlive: Integer overflow by processing special commands" } ] }
rhsa-2009_1500
Vulnerability from csaf_redhat
Published
2009-10-15 08:28
Modified
2024-11-22 03:03
Summary
Red Hat Security Advisory: xpdf security update
Notes
Topic
An updated xpdf package that fixes multiple security issues is now
available for Red Hat Enterprise Linux 3.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
Xpdf is an X Window System based viewer for Portable Document Format (PDF)
files.
Multiple integer overflow flaws were found in Xpdf. An attacker could
create a malicious PDF file that would cause Xpdf to crash or, potentially,
execute arbitrary code when opened. (CVE-2009-0791, CVE-2009-3604,
CVE-2009-3606, CVE-2009-3609)
Red Hat would like to thank Adam Zabrocki for reporting the CVE-2009-3604
issue.
Users are advised to upgrade to this updated package, which contains a
backported patch to correct these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An updated xpdf package that fixes multiple security issues is now\navailable for Red Hat Enterprise Linux 3.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "Xpdf is an X Window System based viewer for Portable Document Format (PDF)\nfiles.\n\nMultiple integer overflow flaws were found in Xpdf. An attacker could\ncreate a malicious PDF file that would cause Xpdf to crash or, potentially,\nexecute arbitrary code when opened. (CVE-2009-0791, CVE-2009-3604,\nCVE-2009-3606, CVE-2009-3609)\n\nRed Hat would like to thank Adam Zabrocki for reporting the CVE-2009-3604\nissue.\n\nUsers are advised to upgrade to this updated package, which contains a\nbackported patch to correct these issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2009:1500", "url": "https://access.redhat.com/errata/RHSA-2009:1500" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "491840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491840" }, { "category": "external", "summary": "526877", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526877" }, { "category": "external", "summary": "526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "526911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526911" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1500.json" } ], "title": "Red Hat Security Advisory: xpdf security update", "tracking": { "current_release_date": "2024-11-22T03:03:56+00:00", "generator": { "date": "2024-11-22T03:03:56+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2009:1500", "initial_release_date": "2009-10-15T08:28:00+00:00", "revision_history": [ { "date": "2009-10-15T08:28:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2009-10-15T04:37:08+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:03:56+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AS version 3", "product": { "name": "Red Hat Enterprise Linux AS version 3", "product_id": "3AS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::as" } } }, { "category": "product_name", "name": "Red Hat Desktop version 3", "product": { "name": "Red Hat Desktop version 3", "product_id": "3Desktop", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::desktop" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 3", "product": { "name": "Red Hat Enterprise Linux ES version 3", "product_id": "3ES", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 3", "product": { "name": "Red Hat Enterprise Linux WS version 3", "product_id": "3WS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "xpdf-debuginfo-1:2.02-17.el3.ia64", "product": { "name": "xpdf-debuginfo-1:2.02-17.el3.ia64", "product_id": "xpdf-debuginfo-1:2.02-17.el3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf-debuginfo@2.02-17.el3?arch=ia64\u0026epoch=1" } } }, { "category": "product_version", "name": "xpdf-1:2.02-17.el3.ia64", "product": { "name": "xpdf-1:2.02-17.el3.ia64", "product_id": "xpdf-1:2.02-17.el3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf@2.02-17.el3?arch=ia64\u0026epoch=1" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "xpdf-debuginfo-1:2.02-17.el3.x86_64", "product": { "name": "xpdf-debuginfo-1:2.02-17.el3.x86_64", "product_id": "xpdf-debuginfo-1:2.02-17.el3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf-debuginfo@2.02-17.el3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "xpdf-1:2.02-17.el3.x86_64", "product": { "name": "xpdf-1:2.02-17.el3.x86_64", "product_id": "xpdf-1:2.02-17.el3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf@2.02-17.el3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "xpdf-debuginfo-1:2.02-17.el3.i386", "product": { "name": "xpdf-debuginfo-1:2.02-17.el3.i386", "product_id": "xpdf-debuginfo-1:2.02-17.el3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf-debuginfo@2.02-17.el3?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "xpdf-1:2.02-17.el3.i386", "product": { "name": "xpdf-1:2.02-17.el3.i386", "product_id": "xpdf-1:2.02-17.el3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf@2.02-17.el3?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "xpdf-1:2.02-17.el3.src", "product": { "name": "xpdf-1:2.02-17.el3.src", "product_id": "xpdf-1:2.02-17.el3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf@2.02-17.el3?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "xpdf-debuginfo-1:2.02-17.el3.ppc", "product": { "name": "xpdf-debuginfo-1:2.02-17.el3.ppc", "product_id": "xpdf-debuginfo-1:2.02-17.el3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf-debuginfo@2.02-17.el3?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "xpdf-1:2.02-17.el3.ppc", "product": { "name": "xpdf-1:2.02-17.el3.ppc", "product_id": "xpdf-1:2.02-17.el3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf@2.02-17.el3?arch=ppc\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "xpdf-debuginfo-1:2.02-17.el3.s390x", "product": { "name": "xpdf-debuginfo-1:2.02-17.el3.s390x", "product_id": "xpdf-debuginfo-1:2.02-17.el3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf-debuginfo@2.02-17.el3?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "xpdf-1:2.02-17.el3.s390x", "product": { "name": "xpdf-1:2.02-17.el3.s390x", "product_id": "xpdf-1:2.02-17.el3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf@2.02-17.el3?arch=s390x\u0026epoch=1" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "xpdf-debuginfo-1:2.02-17.el3.s390", "product": { "name": "xpdf-debuginfo-1:2.02-17.el3.s390", "product_id": "xpdf-debuginfo-1:2.02-17.el3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf-debuginfo@2.02-17.el3?arch=s390\u0026epoch=1" } } }, { "category": "product_version", "name": "xpdf-1:2.02-17.el3.s390", "product": { "name": "xpdf-1:2.02-17.el3.s390", "product_id": "xpdf-1:2.02-17.el3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf@2.02-17.el3?arch=s390\u0026epoch=1" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:xpdf-1:2.02-17.el3.i386" }, "product_reference": "xpdf-1:2.02-17.el3.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:xpdf-1:2.02-17.el3.ia64" }, "product_reference": "xpdf-1:2.02-17.el3.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:xpdf-1:2.02-17.el3.ppc" }, "product_reference": "xpdf-1:2.02-17.el3.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:xpdf-1:2.02-17.el3.s390" }, "product_reference": "xpdf-1:2.02-17.el3.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:xpdf-1:2.02-17.el3.s390x" }, "product_reference": "xpdf-1:2.02-17.el3.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.src as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:xpdf-1:2.02-17.el3.src" }, "product_reference": "xpdf-1:2.02-17.el3.src", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:xpdf-1:2.02-17.el3.x86_64" }, "product_reference": "xpdf-1:2.02-17.el3.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:xpdf-debuginfo-1:2.02-17.el3.i386" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:xpdf-debuginfo-1:2.02-17.el3.ia64" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:xpdf-debuginfo-1:2.02-17.el3.ppc" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:xpdf-debuginfo-1:2.02-17.el3.s390" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:xpdf-debuginfo-1:2.02-17.el3.s390x" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:xpdf-debuginfo-1:2.02-17.el3.x86_64" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:xpdf-1:2.02-17.el3.i386" }, "product_reference": "xpdf-1:2.02-17.el3.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:xpdf-1:2.02-17.el3.ia64" }, "product_reference": "xpdf-1:2.02-17.el3.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:xpdf-1:2.02-17.el3.ppc" }, "product_reference": "xpdf-1:2.02-17.el3.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:xpdf-1:2.02-17.el3.s390" }, "product_reference": "xpdf-1:2.02-17.el3.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:xpdf-1:2.02-17.el3.s390x" }, "product_reference": "xpdf-1:2.02-17.el3.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.src as a component of Red Hat Desktop version 3", "product_id": "3Desktop:xpdf-1:2.02-17.el3.src" }, "product_reference": "xpdf-1:2.02-17.el3.src", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:xpdf-1:2.02-17.el3.x86_64" }, "product_reference": "xpdf-1:2.02-17.el3.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:xpdf-debuginfo-1:2.02-17.el3.i386" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ia64" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ppc" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390x" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:xpdf-debuginfo-1:2.02-17.el3.x86_64" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:xpdf-1:2.02-17.el3.i386" }, "product_reference": "xpdf-1:2.02-17.el3.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:xpdf-1:2.02-17.el3.ia64" }, "product_reference": "xpdf-1:2.02-17.el3.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:xpdf-1:2.02-17.el3.ppc" }, "product_reference": "xpdf-1:2.02-17.el3.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:xpdf-1:2.02-17.el3.s390" }, "product_reference": "xpdf-1:2.02-17.el3.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:xpdf-1:2.02-17.el3.s390x" }, "product_reference": "xpdf-1:2.02-17.el3.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.src as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:xpdf-1:2.02-17.el3.src" }, "product_reference": "xpdf-1:2.02-17.el3.src", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:xpdf-1:2.02-17.el3.x86_64" }, "product_reference": "xpdf-1:2.02-17.el3.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:xpdf-debuginfo-1:2.02-17.el3.i386" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:xpdf-debuginfo-1:2.02-17.el3.ia64" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:xpdf-debuginfo-1:2.02-17.el3.ppc" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:xpdf-debuginfo-1:2.02-17.el3.s390" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:xpdf-debuginfo-1:2.02-17.el3.s390x" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:xpdf-debuginfo-1:2.02-17.el3.x86_64" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:xpdf-1:2.02-17.el3.i386" }, "product_reference": "xpdf-1:2.02-17.el3.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:xpdf-1:2.02-17.el3.ia64" }, "product_reference": "xpdf-1:2.02-17.el3.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:xpdf-1:2.02-17.el3.ppc" }, "product_reference": "xpdf-1:2.02-17.el3.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:xpdf-1:2.02-17.el3.s390" }, "product_reference": "xpdf-1:2.02-17.el3.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:xpdf-1:2.02-17.el3.s390x" }, "product_reference": "xpdf-1:2.02-17.el3.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.src as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:xpdf-1:2.02-17.el3.src" }, "product_reference": "xpdf-1:2.02-17.el3.src", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:2.02-17.el3.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:xpdf-1:2.02-17.el3.x86_64" }, "product_reference": "xpdf-1:2.02-17.el3.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:xpdf-debuginfo-1:2.02-17.el3.i386" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:xpdf-debuginfo-1:2.02-17.el3.ia64" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:xpdf-debuginfo-1:2.02-17.el3.ppc" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:xpdf-debuginfo-1:2.02-17.el3.s390" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:xpdf-debuginfo-1:2.02-17.el3.s390x" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:2.02-17.el3.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:xpdf-debuginfo-1:2.02-17.el3.x86_64" }, "product_reference": "xpdf-debuginfo-1:2.02-17.el3.x86_64", "relates_to_product_reference": "3WS" } ] }, "vulnerabilities": [ { "cve": "CVE-2009-0791", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-03-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "491840" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops filter in CUPS 1.1.17, 1.1.22, and 1.3.7, GPdf, and kdegraphics KPDF, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file that triggers a heap-based buffer overflow, possibly related to (1) Decrypt.cxx, (2) FoFiTrueType.cxx, (3) gmem.c, (4) JBIG2Stream.cxx, and (5) PSOutputDev.cxx in pdftops/. NOTE: the JBIG2Stream.cxx vector may overlap CVE-2009-1179.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: multiple integer overflows", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "3AS:xpdf-1:2.02-17.el3.i386", "3AS:xpdf-1:2.02-17.el3.ia64", "3AS:xpdf-1:2.02-17.el3.ppc", "3AS:xpdf-1:2.02-17.el3.s390", "3AS:xpdf-1:2.02-17.el3.s390x", "3AS:xpdf-1:2.02-17.el3.src", "3AS:xpdf-1:2.02-17.el3.x86_64", "3AS:xpdf-debuginfo-1:2.02-17.el3.i386", "3AS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3AS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3AS:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3Desktop:xpdf-1:2.02-17.el3.i386", "3Desktop:xpdf-1:2.02-17.el3.ia64", "3Desktop:xpdf-1:2.02-17.el3.ppc", "3Desktop:xpdf-1:2.02-17.el3.s390", "3Desktop:xpdf-1:2.02-17.el3.s390x", "3Desktop:xpdf-1:2.02-17.el3.src", "3Desktop:xpdf-1:2.02-17.el3.x86_64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.i386", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ia64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ppc", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390x", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3ES:xpdf-1:2.02-17.el3.i386", "3ES:xpdf-1:2.02-17.el3.ia64", "3ES:xpdf-1:2.02-17.el3.ppc", "3ES:xpdf-1:2.02-17.el3.s390", "3ES:xpdf-1:2.02-17.el3.s390x", "3ES:xpdf-1:2.02-17.el3.src", "3ES:xpdf-1:2.02-17.el3.x86_64", "3ES:xpdf-debuginfo-1:2.02-17.el3.i386", "3ES:xpdf-debuginfo-1:2.02-17.el3.ia64", "3ES:xpdf-debuginfo-1:2.02-17.el3.ppc", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390x", "3ES:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3WS:xpdf-1:2.02-17.el3.i386", "3WS:xpdf-1:2.02-17.el3.ia64", "3WS:xpdf-1:2.02-17.el3.ppc", "3WS:xpdf-1:2.02-17.el3.s390", "3WS:xpdf-1:2.02-17.el3.s390x", "3WS:xpdf-1:2.02-17.el3.src", "3WS:xpdf-1:2.02-17.el3.x86_64", "3WS:xpdf-debuginfo-1:2.02-17.el3.i386", "3WS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3WS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3WS:xpdf-debuginfo-1:2.02-17.el3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0791" }, { "category": "external", "summary": "RHBZ#491840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491840" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0791", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0791" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0791", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0791" } ], "release_date": "2009-05-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:28:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "3AS:xpdf-1:2.02-17.el3.i386", "3AS:xpdf-1:2.02-17.el3.ia64", "3AS:xpdf-1:2.02-17.el3.ppc", "3AS:xpdf-1:2.02-17.el3.s390", "3AS:xpdf-1:2.02-17.el3.s390x", "3AS:xpdf-1:2.02-17.el3.src", "3AS:xpdf-1:2.02-17.el3.x86_64", "3AS:xpdf-debuginfo-1:2.02-17.el3.i386", "3AS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3AS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3AS:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3Desktop:xpdf-1:2.02-17.el3.i386", "3Desktop:xpdf-1:2.02-17.el3.ia64", "3Desktop:xpdf-1:2.02-17.el3.ppc", "3Desktop:xpdf-1:2.02-17.el3.s390", "3Desktop:xpdf-1:2.02-17.el3.s390x", "3Desktop:xpdf-1:2.02-17.el3.src", "3Desktop:xpdf-1:2.02-17.el3.x86_64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.i386", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ia64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ppc", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390x", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3ES:xpdf-1:2.02-17.el3.i386", "3ES:xpdf-1:2.02-17.el3.ia64", "3ES:xpdf-1:2.02-17.el3.ppc", "3ES:xpdf-1:2.02-17.el3.s390", "3ES:xpdf-1:2.02-17.el3.s390x", "3ES:xpdf-1:2.02-17.el3.src", "3ES:xpdf-1:2.02-17.el3.x86_64", "3ES:xpdf-debuginfo-1:2.02-17.el3.i386", "3ES:xpdf-debuginfo-1:2.02-17.el3.ia64", "3ES:xpdf-debuginfo-1:2.02-17.el3.ppc", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390x", "3ES:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3WS:xpdf-1:2.02-17.el3.i386", "3WS:xpdf-1:2.02-17.el3.ia64", "3WS:xpdf-1:2.02-17.el3.ppc", "3WS:xpdf-1:2.02-17.el3.s390", "3WS:xpdf-1:2.02-17.el3.s390x", "3WS:xpdf-1:2.02-17.el3.src", "3WS:xpdf-1:2.02-17.el3.x86_64", "3WS:xpdf-debuginfo-1:2.02-17.el3.i386", "3WS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3WS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3WS:xpdf-debuginfo-1:2.02-17.el3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1500" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "3AS:xpdf-1:2.02-17.el3.i386", "3AS:xpdf-1:2.02-17.el3.ia64", "3AS:xpdf-1:2.02-17.el3.ppc", "3AS:xpdf-1:2.02-17.el3.s390", "3AS:xpdf-1:2.02-17.el3.s390x", "3AS:xpdf-1:2.02-17.el3.src", "3AS:xpdf-1:2.02-17.el3.x86_64", "3AS:xpdf-debuginfo-1:2.02-17.el3.i386", "3AS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3AS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3AS:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3Desktop:xpdf-1:2.02-17.el3.i386", "3Desktop:xpdf-1:2.02-17.el3.ia64", "3Desktop:xpdf-1:2.02-17.el3.ppc", "3Desktop:xpdf-1:2.02-17.el3.s390", "3Desktop:xpdf-1:2.02-17.el3.s390x", "3Desktop:xpdf-1:2.02-17.el3.src", "3Desktop:xpdf-1:2.02-17.el3.x86_64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.i386", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ia64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ppc", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390x", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3ES:xpdf-1:2.02-17.el3.i386", "3ES:xpdf-1:2.02-17.el3.ia64", "3ES:xpdf-1:2.02-17.el3.ppc", "3ES:xpdf-1:2.02-17.el3.s390", "3ES:xpdf-1:2.02-17.el3.s390x", "3ES:xpdf-1:2.02-17.el3.src", "3ES:xpdf-1:2.02-17.el3.x86_64", "3ES:xpdf-debuginfo-1:2.02-17.el3.i386", "3ES:xpdf-debuginfo-1:2.02-17.el3.ia64", "3ES:xpdf-debuginfo-1:2.02-17.el3.ppc", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390x", "3ES:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3WS:xpdf-1:2.02-17.el3.i386", "3WS:xpdf-1:2.02-17.el3.ia64", "3WS:xpdf-1:2.02-17.el3.ppc", "3WS:xpdf-1:2.02-17.el3.s390", "3WS:xpdf-1:2.02-17.el3.s390x", "3WS:xpdf-1:2.02-17.el3.src", "3WS:xpdf-1:2.02-17.el3.x86_64", "3WS:xpdf-debuginfo-1:2.02-17.el3.i386", "3WS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3WS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3WS:xpdf-debuginfo-1:2.02-17.el3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "xpdf: multiple integer overflows" }, { "acknowledgments": [ { "names": [ "Adam Zabrocki" ] } ], "cve": "CVE-2009-3604", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526911" } ], "notes": [ { "category": "description", "text": "The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document that triggers a NULL pointer dereference or a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: Splash:: drawImage integer overflow and missing allocation return value check", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "3AS:xpdf-1:2.02-17.el3.i386", "3AS:xpdf-1:2.02-17.el3.ia64", "3AS:xpdf-1:2.02-17.el3.ppc", "3AS:xpdf-1:2.02-17.el3.s390", "3AS:xpdf-1:2.02-17.el3.s390x", "3AS:xpdf-1:2.02-17.el3.src", "3AS:xpdf-1:2.02-17.el3.x86_64", "3AS:xpdf-debuginfo-1:2.02-17.el3.i386", "3AS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3AS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3AS:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3Desktop:xpdf-1:2.02-17.el3.i386", "3Desktop:xpdf-1:2.02-17.el3.ia64", "3Desktop:xpdf-1:2.02-17.el3.ppc", "3Desktop:xpdf-1:2.02-17.el3.s390", "3Desktop:xpdf-1:2.02-17.el3.s390x", "3Desktop:xpdf-1:2.02-17.el3.src", "3Desktop:xpdf-1:2.02-17.el3.x86_64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.i386", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ia64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ppc", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390x", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3ES:xpdf-1:2.02-17.el3.i386", "3ES:xpdf-1:2.02-17.el3.ia64", "3ES:xpdf-1:2.02-17.el3.ppc", "3ES:xpdf-1:2.02-17.el3.s390", "3ES:xpdf-1:2.02-17.el3.s390x", "3ES:xpdf-1:2.02-17.el3.src", "3ES:xpdf-1:2.02-17.el3.x86_64", "3ES:xpdf-debuginfo-1:2.02-17.el3.i386", "3ES:xpdf-debuginfo-1:2.02-17.el3.ia64", "3ES:xpdf-debuginfo-1:2.02-17.el3.ppc", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390x", "3ES:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3WS:xpdf-1:2.02-17.el3.i386", "3WS:xpdf-1:2.02-17.el3.ia64", "3WS:xpdf-1:2.02-17.el3.ppc", "3WS:xpdf-1:2.02-17.el3.s390", "3WS:xpdf-1:2.02-17.el3.s390x", "3WS:xpdf-1:2.02-17.el3.src", "3WS:xpdf-1:2.02-17.el3.x86_64", "3WS:xpdf-debuginfo-1:2.02-17.el3.i386", "3WS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3WS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3WS:xpdf-debuginfo-1:2.02-17.el3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3604" }, { "category": "external", "summary": "RHBZ#526911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526911" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3604", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3604" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3604", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3604" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:28:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "3AS:xpdf-1:2.02-17.el3.i386", "3AS:xpdf-1:2.02-17.el3.ia64", "3AS:xpdf-1:2.02-17.el3.ppc", "3AS:xpdf-1:2.02-17.el3.s390", "3AS:xpdf-1:2.02-17.el3.s390x", "3AS:xpdf-1:2.02-17.el3.src", "3AS:xpdf-1:2.02-17.el3.x86_64", "3AS:xpdf-debuginfo-1:2.02-17.el3.i386", "3AS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3AS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3AS:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3Desktop:xpdf-1:2.02-17.el3.i386", "3Desktop:xpdf-1:2.02-17.el3.ia64", "3Desktop:xpdf-1:2.02-17.el3.ppc", "3Desktop:xpdf-1:2.02-17.el3.s390", "3Desktop:xpdf-1:2.02-17.el3.s390x", "3Desktop:xpdf-1:2.02-17.el3.src", "3Desktop:xpdf-1:2.02-17.el3.x86_64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.i386", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ia64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ppc", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390x", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3ES:xpdf-1:2.02-17.el3.i386", "3ES:xpdf-1:2.02-17.el3.ia64", "3ES:xpdf-1:2.02-17.el3.ppc", "3ES:xpdf-1:2.02-17.el3.s390", "3ES:xpdf-1:2.02-17.el3.s390x", "3ES:xpdf-1:2.02-17.el3.src", "3ES:xpdf-1:2.02-17.el3.x86_64", "3ES:xpdf-debuginfo-1:2.02-17.el3.i386", "3ES:xpdf-debuginfo-1:2.02-17.el3.ia64", "3ES:xpdf-debuginfo-1:2.02-17.el3.ppc", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390x", "3ES:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3WS:xpdf-1:2.02-17.el3.i386", "3WS:xpdf-1:2.02-17.el3.ia64", "3WS:xpdf-1:2.02-17.el3.ppc", "3WS:xpdf-1:2.02-17.el3.s390", "3WS:xpdf-1:2.02-17.el3.s390x", "3WS:xpdf-1:2.02-17.el3.src", "3WS:xpdf-1:2.02-17.el3.x86_64", "3WS:xpdf-debuginfo-1:2.02-17.el3.i386", "3WS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3WS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3WS:xpdf-debuginfo-1:2.02-17.el3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1500" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "3AS:xpdf-1:2.02-17.el3.i386", "3AS:xpdf-1:2.02-17.el3.ia64", "3AS:xpdf-1:2.02-17.el3.ppc", "3AS:xpdf-1:2.02-17.el3.s390", "3AS:xpdf-1:2.02-17.el3.s390x", "3AS:xpdf-1:2.02-17.el3.src", "3AS:xpdf-1:2.02-17.el3.x86_64", "3AS:xpdf-debuginfo-1:2.02-17.el3.i386", "3AS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3AS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3AS:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3Desktop:xpdf-1:2.02-17.el3.i386", "3Desktop:xpdf-1:2.02-17.el3.ia64", "3Desktop:xpdf-1:2.02-17.el3.ppc", "3Desktop:xpdf-1:2.02-17.el3.s390", "3Desktop:xpdf-1:2.02-17.el3.s390x", "3Desktop:xpdf-1:2.02-17.el3.src", "3Desktop:xpdf-1:2.02-17.el3.x86_64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.i386", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ia64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ppc", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390x", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3ES:xpdf-1:2.02-17.el3.i386", "3ES:xpdf-1:2.02-17.el3.ia64", "3ES:xpdf-1:2.02-17.el3.ppc", "3ES:xpdf-1:2.02-17.el3.s390", "3ES:xpdf-1:2.02-17.el3.s390x", "3ES:xpdf-1:2.02-17.el3.src", "3ES:xpdf-1:2.02-17.el3.x86_64", "3ES:xpdf-debuginfo-1:2.02-17.el3.i386", "3ES:xpdf-debuginfo-1:2.02-17.el3.ia64", "3ES:xpdf-debuginfo-1:2.02-17.el3.ppc", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390x", "3ES:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3WS:xpdf-1:2.02-17.el3.i386", "3WS:xpdf-1:2.02-17.el3.ia64", "3WS:xpdf-1:2.02-17.el3.ppc", "3WS:xpdf-1:2.02-17.el3.s390", "3WS:xpdf-1:2.02-17.el3.s390x", "3WS:xpdf-1:2.02-17.el3.src", "3WS:xpdf-1:2.02-17.el3.x86_64", "3WS:xpdf-debuginfo-1:2.02-17.el3.i386", "3WS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3WS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3WS:xpdf-debuginfo-1:2.02-17.el3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: Splash:: drawImage integer overflow and missing allocation return value check" }, { "cve": "CVE-2009-3606", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-06-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526877" } ], "notes": [ { "category": "description", "text": "Integer overflow in the PSOutputDev::doImageL1Sep function in Xpdf before 3.02pl4, and Poppler 0.x, as used in kdegraphics KPDF, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: PSOutputDev:: doImageL1Sep integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "3AS:xpdf-1:2.02-17.el3.i386", "3AS:xpdf-1:2.02-17.el3.ia64", "3AS:xpdf-1:2.02-17.el3.ppc", "3AS:xpdf-1:2.02-17.el3.s390", "3AS:xpdf-1:2.02-17.el3.s390x", "3AS:xpdf-1:2.02-17.el3.src", "3AS:xpdf-1:2.02-17.el3.x86_64", "3AS:xpdf-debuginfo-1:2.02-17.el3.i386", "3AS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3AS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3AS:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3Desktop:xpdf-1:2.02-17.el3.i386", "3Desktop:xpdf-1:2.02-17.el3.ia64", "3Desktop:xpdf-1:2.02-17.el3.ppc", "3Desktop:xpdf-1:2.02-17.el3.s390", "3Desktop:xpdf-1:2.02-17.el3.s390x", "3Desktop:xpdf-1:2.02-17.el3.src", "3Desktop:xpdf-1:2.02-17.el3.x86_64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.i386", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ia64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ppc", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390x", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3ES:xpdf-1:2.02-17.el3.i386", "3ES:xpdf-1:2.02-17.el3.ia64", "3ES:xpdf-1:2.02-17.el3.ppc", "3ES:xpdf-1:2.02-17.el3.s390", "3ES:xpdf-1:2.02-17.el3.s390x", "3ES:xpdf-1:2.02-17.el3.src", "3ES:xpdf-1:2.02-17.el3.x86_64", "3ES:xpdf-debuginfo-1:2.02-17.el3.i386", "3ES:xpdf-debuginfo-1:2.02-17.el3.ia64", "3ES:xpdf-debuginfo-1:2.02-17.el3.ppc", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390x", "3ES:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3WS:xpdf-1:2.02-17.el3.i386", "3WS:xpdf-1:2.02-17.el3.ia64", "3WS:xpdf-1:2.02-17.el3.ppc", "3WS:xpdf-1:2.02-17.el3.s390", "3WS:xpdf-1:2.02-17.el3.s390x", "3WS:xpdf-1:2.02-17.el3.src", "3WS:xpdf-1:2.02-17.el3.x86_64", "3WS:xpdf-debuginfo-1:2.02-17.el3.i386", "3WS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3WS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3WS:xpdf-debuginfo-1:2.02-17.el3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3606" }, { "category": "external", "summary": "RHBZ#526877", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526877" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3606", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3606" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3606", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3606" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:28:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "3AS:xpdf-1:2.02-17.el3.i386", "3AS:xpdf-1:2.02-17.el3.ia64", "3AS:xpdf-1:2.02-17.el3.ppc", "3AS:xpdf-1:2.02-17.el3.s390", "3AS:xpdf-1:2.02-17.el3.s390x", "3AS:xpdf-1:2.02-17.el3.src", "3AS:xpdf-1:2.02-17.el3.x86_64", "3AS:xpdf-debuginfo-1:2.02-17.el3.i386", "3AS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3AS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3AS:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3Desktop:xpdf-1:2.02-17.el3.i386", "3Desktop:xpdf-1:2.02-17.el3.ia64", "3Desktop:xpdf-1:2.02-17.el3.ppc", "3Desktop:xpdf-1:2.02-17.el3.s390", "3Desktop:xpdf-1:2.02-17.el3.s390x", "3Desktop:xpdf-1:2.02-17.el3.src", "3Desktop:xpdf-1:2.02-17.el3.x86_64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.i386", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ia64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ppc", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390x", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3ES:xpdf-1:2.02-17.el3.i386", "3ES:xpdf-1:2.02-17.el3.ia64", "3ES:xpdf-1:2.02-17.el3.ppc", "3ES:xpdf-1:2.02-17.el3.s390", "3ES:xpdf-1:2.02-17.el3.s390x", "3ES:xpdf-1:2.02-17.el3.src", "3ES:xpdf-1:2.02-17.el3.x86_64", "3ES:xpdf-debuginfo-1:2.02-17.el3.i386", "3ES:xpdf-debuginfo-1:2.02-17.el3.ia64", "3ES:xpdf-debuginfo-1:2.02-17.el3.ppc", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390x", "3ES:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3WS:xpdf-1:2.02-17.el3.i386", "3WS:xpdf-1:2.02-17.el3.ia64", "3WS:xpdf-1:2.02-17.el3.ppc", "3WS:xpdf-1:2.02-17.el3.s390", "3WS:xpdf-1:2.02-17.el3.s390x", "3WS:xpdf-1:2.02-17.el3.src", "3WS:xpdf-1:2.02-17.el3.x86_64", "3WS:xpdf-debuginfo-1:2.02-17.el3.i386", "3WS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3WS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3WS:xpdf-debuginfo-1:2.02-17.el3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1500" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.7, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "3AS:xpdf-1:2.02-17.el3.i386", "3AS:xpdf-1:2.02-17.el3.ia64", "3AS:xpdf-1:2.02-17.el3.ppc", "3AS:xpdf-1:2.02-17.el3.s390", "3AS:xpdf-1:2.02-17.el3.s390x", "3AS:xpdf-1:2.02-17.el3.src", "3AS:xpdf-1:2.02-17.el3.x86_64", "3AS:xpdf-debuginfo-1:2.02-17.el3.i386", "3AS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3AS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3AS:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3Desktop:xpdf-1:2.02-17.el3.i386", "3Desktop:xpdf-1:2.02-17.el3.ia64", "3Desktop:xpdf-1:2.02-17.el3.ppc", "3Desktop:xpdf-1:2.02-17.el3.s390", "3Desktop:xpdf-1:2.02-17.el3.s390x", "3Desktop:xpdf-1:2.02-17.el3.src", "3Desktop:xpdf-1:2.02-17.el3.x86_64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.i386", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ia64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ppc", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390x", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3ES:xpdf-1:2.02-17.el3.i386", "3ES:xpdf-1:2.02-17.el3.ia64", "3ES:xpdf-1:2.02-17.el3.ppc", "3ES:xpdf-1:2.02-17.el3.s390", "3ES:xpdf-1:2.02-17.el3.s390x", "3ES:xpdf-1:2.02-17.el3.src", "3ES:xpdf-1:2.02-17.el3.x86_64", "3ES:xpdf-debuginfo-1:2.02-17.el3.i386", "3ES:xpdf-debuginfo-1:2.02-17.el3.ia64", "3ES:xpdf-debuginfo-1:2.02-17.el3.ppc", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390x", "3ES:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3WS:xpdf-1:2.02-17.el3.i386", "3WS:xpdf-1:2.02-17.el3.ia64", "3WS:xpdf-1:2.02-17.el3.ppc", "3WS:xpdf-1:2.02-17.el3.s390", "3WS:xpdf-1:2.02-17.el3.s390x", "3WS:xpdf-1:2.02-17.el3.src", "3WS:xpdf-1:2.02-17.el3.x86_64", "3WS:xpdf-debuginfo-1:2.02-17.el3.i386", "3WS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3WS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3WS:xpdf-debuginfo-1:2.02-17.el3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "xpdf/poppler: PSOutputDev:: doImageL1Sep integer overflow" }, { "cve": "CVE-2009-3609", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-06-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526893" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: ImageStream:: ImageStream integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "3AS:xpdf-1:2.02-17.el3.i386", "3AS:xpdf-1:2.02-17.el3.ia64", "3AS:xpdf-1:2.02-17.el3.ppc", "3AS:xpdf-1:2.02-17.el3.s390", "3AS:xpdf-1:2.02-17.el3.s390x", "3AS:xpdf-1:2.02-17.el3.src", "3AS:xpdf-1:2.02-17.el3.x86_64", "3AS:xpdf-debuginfo-1:2.02-17.el3.i386", "3AS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3AS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3AS:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3Desktop:xpdf-1:2.02-17.el3.i386", "3Desktop:xpdf-1:2.02-17.el3.ia64", "3Desktop:xpdf-1:2.02-17.el3.ppc", "3Desktop:xpdf-1:2.02-17.el3.s390", "3Desktop:xpdf-1:2.02-17.el3.s390x", "3Desktop:xpdf-1:2.02-17.el3.src", "3Desktop:xpdf-1:2.02-17.el3.x86_64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.i386", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ia64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ppc", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390x", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3ES:xpdf-1:2.02-17.el3.i386", "3ES:xpdf-1:2.02-17.el3.ia64", "3ES:xpdf-1:2.02-17.el3.ppc", "3ES:xpdf-1:2.02-17.el3.s390", "3ES:xpdf-1:2.02-17.el3.s390x", "3ES:xpdf-1:2.02-17.el3.src", "3ES:xpdf-1:2.02-17.el3.x86_64", "3ES:xpdf-debuginfo-1:2.02-17.el3.i386", "3ES:xpdf-debuginfo-1:2.02-17.el3.ia64", "3ES:xpdf-debuginfo-1:2.02-17.el3.ppc", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390x", "3ES:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3WS:xpdf-1:2.02-17.el3.i386", "3WS:xpdf-1:2.02-17.el3.ia64", "3WS:xpdf-1:2.02-17.el3.ppc", "3WS:xpdf-1:2.02-17.el3.s390", "3WS:xpdf-1:2.02-17.el3.s390x", "3WS:xpdf-1:2.02-17.el3.src", "3WS:xpdf-1:2.02-17.el3.x86_64", "3WS:xpdf-debuginfo-1:2.02-17.el3.i386", "3WS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3WS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3WS:xpdf-debuginfo-1:2.02-17.el3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3609" }, { "category": "external", "summary": "RHBZ#526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3609", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3609" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:28:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "3AS:xpdf-1:2.02-17.el3.i386", "3AS:xpdf-1:2.02-17.el3.ia64", "3AS:xpdf-1:2.02-17.el3.ppc", "3AS:xpdf-1:2.02-17.el3.s390", "3AS:xpdf-1:2.02-17.el3.s390x", "3AS:xpdf-1:2.02-17.el3.src", "3AS:xpdf-1:2.02-17.el3.x86_64", "3AS:xpdf-debuginfo-1:2.02-17.el3.i386", "3AS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3AS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3AS:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3Desktop:xpdf-1:2.02-17.el3.i386", "3Desktop:xpdf-1:2.02-17.el3.ia64", "3Desktop:xpdf-1:2.02-17.el3.ppc", "3Desktop:xpdf-1:2.02-17.el3.s390", "3Desktop:xpdf-1:2.02-17.el3.s390x", "3Desktop:xpdf-1:2.02-17.el3.src", "3Desktop:xpdf-1:2.02-17.el3.x86_64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.i386", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ia64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ppc", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390x", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3ES:xpdf-1:2.02-17.el3.i386", "3ES:xpdf-1:2.02-17.el3.ia64", "3ES:xpdf-1:2.02-17.el3.ppc", "3ES:xpdf-1:2.02-17.el3.s390", "3ES:xpdf-1:2.02-17.el3.s390x", "3ES:xpdf-1:2.02-17.el3.src", "3ES:xpdf-1:2.02-17.el3.x86_64", "3ES:xpdf-debuginfo-1:2.02-17.el3.i386", "3ES:xpdf-debuginfo-1:2.02-17.el3.ia64", "3ES:xpdf-debuginfo-1:2.02-17.el3.ppc", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390x", "3ES:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3WS:xpdf-1:2.02-17.el3.i386", "3WS:xpdf-1:2.02-17.el3.ia64", "3WS:xpdf-1:2.02-17.el3.ppc", "3WS:xpdf-1:2.02-17.el3.s390", "3WS:xpdf-1:2.02-17.el3.s390x", "3WS:xpdf-1:2.02-17.el3.src", "3WS:xpdf-1:2.02-17.el3.x86_64", "3WS:xpdf-debuginfo-1:2.02-17.el3.i386", "3WS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3WS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3WS:xpdf-debuginfo-1:2.02-17.el3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1500" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "3AS:xpdf-1:2.02-17.el3.i386", "3AS:xpdf-1:2.02-17.el3.ia64", "3AS:xpdf-1:2.02-17.el3.ppc", "3AS:xpdf-1:2.02-17.el3.s390", "3AS:xpdf-1:2.02-17.el3.s390x", "3AS:xpdf-1:2.02-17.el3.src", "3AS:xpdf-1:2.02-17.el3.x86_64", "3AS:xpdf-debuginfo-1:2.02-17.el3.i386", "3AS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3AS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390", "3AS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3AS:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3Desktop:xpdf-1:2.02-17.el3.i386", "3Desktop:xpdf-1:2.02-17.el3.ia64", "3Desktop:xpdf-1:2.02-17.el3.ppc", "3Desktop:xpdf-1:2.02-17.el3.s390", "3Desktop:xpdf-1:2.02-17.el3.s390x", "3Desktop:xpdf-1:2.02-17.el3.src", "3Desktop:xpdf-1:2.02-17.el3.x86_64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.i386", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ia64", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.ppc", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.s390x", "3Desktop:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3ES:xpdf-1:2.02-17.el3.i386", "3ES:xpdf-1:2.02-17.el3.ia64", "3ES:xpdf-1:2.02-17.el3.ppc", "3ES:xpdf-1:2.02-17.el3.s390", "3ES:xpdf-1:2.02-17.el3.s390x", "3ES:xpdf-1:2.02-17.el3.src", "3ES:xpdf-1:2.02-17.el3.x86_64", "3ES:xpdf-debuginfo-1:2.02-17.el3.i386", "3ES:xpdf-debuginfo-1:2.02-17.el3.ia64", "3ES:xpdf-debuginfo-1:2.02-17.el3.ppc", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390", "3ES:xpdf-debuginfo-1:2.02-17.el3.s390x", "3ES:xpdf-debuginfo-1:2.02-17.el3.x86_64", "3WS:xpdf-1:2.02-17.el3.i386", "3WS:xpdf-1:2.02-17.el3.ia64", "3WS:xpdf-1:2.02-17.el3.ppc", "3WS:xpdf-1:2.02-17.el3.s390", "3WS:xpdf-1:2.02-17.el3.s390x", "3WS:xpdf-1:2.02-17.el3.src", "3WS:xpdf-1:2.02-17.el3.x86_64", "3WS:xpdf-debuginfo-1:2.02-17.el3.i386", "3WS:xpdf-debuginfo-1:2.02-17.el3.ia64", "3WS:xpdf-debuginfo-1:2.02-17.el3.ppc", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390", "3WS:xpdf-debuginfo-1:2.02-17.el3.s390x", "3WS:xpdf-debuginfo-1:2.02-17.el3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "xpdf/poppler: ImageStream:: ImageStream integer overflow" } ] }
rhsa-2009_1504
Vulnerability from csaf_redhat
Published
2009-10-15 08:48
Modified
2024-11-22 03:22
Summary
Red Hat Security Advisory: poppler security and bug fix update
Notes
Topic
Updated poppler packages that fix multiple security issues and a bug are
now available for Red Hat Enterprise Linux 5.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
Poppler is a Portable Document Format (PDF) rendering library, used by
applications such as Evince.
Multiple integer overflow flaws were found in poppler. An attacker could
create a malicious PDF file that would cause applications that use poppler
(such as Evince) to crash or, potentially, execute arbitrary code when
opened. (CVE-2009-3603, CVE-2009-3608, CVE-2009-3609)
Red Hat would like to thank Chris Rohlf for reporting the CVE-2009-3608
issue.
This update also corrects a regression introduced in the previous poppler
security update, RHSA-2009:0480, that prevented poppler from rendering
certain PDF documents correctly. (BZ#528147)
Users are advised to upgrade to these updated packages, which contain
backported patches to resolve these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated poppler packages that fix multiple security issues and a bug are\nnow available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "Poppler is a Portable Document Format (PDF) rendering library, used by\napplications such as Evince.\n\nMultiple integer overflow flaws were found in poppler. An attacker could\ncreate a malicious PDF file that would cause applications that use poppler\n(such as Evince) to crash or, potentially, execute arbitrary code when\nopened. (CVE-2009-3603, CVE-2009-3608, CVE-2009-3609)\n\nRed Hat would like to thank Chris Rohlf for reporting the CVE-2009-3608\nissue.\n\nThis update also corrects a regression introduced in the previous poppler\nsecurity update, RHSA-2009:0480, that prevented poppler from rendering\ncertain PDF documents correctly. (BZ#528147)\n\nUsers are advised to upgrade to these updated packages, which contain\nbackported patches to resolve these issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2009:1504", "url": "https://access.redhat.com/errata/RHSA-2009:1504" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "526637", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526637" }, { "category": "external", "summary": "526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "526915", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526915" }, { "category": "external", "summary": "528147", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=528147" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1504.json" } ], "title": "Red Hat Security Advisory: poppler security and bug fix update", "tracking": { "current_release_date": "2024-11-22T03:22:39+00:00", "generator": { "date": "2024-11-22T03:22:39+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2009:1504", "initial_release_date": "2009-10-15T08:48:00+00:00", "revision_history": [ { "date": "2009-10-15T08:48:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2009-10-15T04:51:17+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:22:39+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client_workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "poppler-0:0.5.4-4.4.el5_4.11.src", "product": { "name": "poppler-0:0.5.4-4.4.el5_4.11.src", "product_id": "poppler-0:0.5.4-4.4.el5_4.11.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler@0.5.4-4.4.el5_4.11?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "product": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "product_id": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-debuginfo@0.5.4-4.4.el5_4.11?arch=x86_64" } } }, { "category": "product_version", "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "product": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "product_id": "poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-devel@0.5.4-4.4.el5_4.11?arch=x86_64" } } }, { "category": "product_version", "name": "poppler-0:0.5.4-4.4.el5_4.11.x86_64", "product": { "name": "poppler-0:0.5.4-4.4.el5_4.11.x86_64", "product_id": "poppler-0:0.5.4-4.4.el5_4.11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler@0.5.4-4.4.el5_4.11?arch=x86_64" } } }, { "category": "product_version", "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "product": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "product_id": "poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-utils@0.5.4-4.4.el5_4.11?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "product": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "product_id": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-debuginfo@0.5.4-4.4.el5_4.11?arch=i386" } } }, { "category": "product_version", "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "product": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "product_id": "poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-devel@0.5.4-4.4.el5_4.11?arch=i386" } } }, { "category": "product_version", "name": "poppler-0:0.5.4-4.4.el5_4.11.i386", "product": { "name": "poppler-0:0.5.4-4.4.el5_4.11.i386", "product_id": "poppler-0:0.5.4-4.4.el5_4.11.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler@0.5.4-4.4.el5_4.11?arch=i386" } } }, { "category": "product_version", "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "product": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "product_id": "poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-utils@0.5.4-4.4.el5_4.11?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "poppler-0:0.5.4-4.4.el5_4.11.ia64", "product": { "name": "poppler-0:0.5.4-4.4.el5_4.11.ia64", "product_id": "poppler-0:0.5.4-4.4.el5_4.11.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler@0.5.4-4.4.el5_4.11?arch=ia64" } } }, { "category": "product_version", "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "product": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "product_id": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-debuginfo@0.5.4-4.4.el5_4.11?arch=ia64" } } }, { "category": "product_version", "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "product": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "product_id": "poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-utils@0.5.4-4.4.el5_4.11?arch=ia64" } } }, { "category": "product_version", "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "product": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "product_id": "poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-devel@0.5.4-4.4.el5_4.11?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "poppler-0:0.5.4-4.4.el5_4.11.ppc64", "product": { "name": "poppler-0:0.5.4-4.4.el5_4.11.ppc64", "product_id": "poppler-0:0.5.4-4.4.el5_4.11.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler@0.5.4-4.4.el5_4.11?arch=ppc64" } } }, { "category": "product_version", "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "product": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "product_id": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-debuginfo@0.5.4-4.4.el5_4.11?arch=ppc64" } } }, { "category": "product_version", "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "product": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "product_id": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-devel@0.5.4-4.4.el5_4.11?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "poppler-0:0.5.4-4.4.el5_4.11.ppc", "product": { "name": "poppler-0:0.5.4-4.4.el5_4.11.ppc", "product_id": "poppler-0:0.5.4-4.4.el5_4.11.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler@0.5.4-4.4.el5_4.11?arch=ppc" } } }, { "category": "product_version", "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "product": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "product_id": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-debuginfo@0.5.4-4.4.el5_4.11?arch=ppc" } } }, { "category": "product_version", "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "product": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "product_id": "poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-utils@0.5.4-4.4.el5_4.11?arch=ppc" } } }, { "category": "product_version", "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "product": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "product_id": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-devel@0.5.4-4.4.el5_4.11?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "poppler-0:0.5.4-4.4.el5_4.11.s390x", "product": { "name": "poppler-0:0.5.4-4.4.el5_4.11.s390x", "product_id": "poppler-0:0.5.4-4.4.el5_4.11.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler@0.5.4-4.4.el5_4.11?arch=s390x" } } }, { "category": "product_version", "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "product": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "product_id": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-debuginfo@0.5.4-4.4.el5_4.11?arch=s390x" } } }, { "category": "product_version", "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "product": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "product_id": "poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-utils@0.5.4-4.4.el5_4.11?arch=s390x" } } }, { "category": "product_version", "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "product": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "product_id": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-devel@0.5.4-4.4.el5_4.11?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "poppler-0:0.5.4-4.4.el5_4.11.s390", "product": { "name": "poppler-0:0.5.4-4.4.el5_4.11.s390", "product_id": "poppler-0:0.5.4-4.4.el5_4.11.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler@0.5.4-4.4.el5_4.11?arch=s390" } } }, { "category": "product_version", "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "product": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "product_id": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-debuginfo@0.5.4-4.4.el5_4.11?arch=s390" } } }, { "category": "product_version", "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "product": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "product_id": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/poppler-devel@0.5.4-4.4.el5_4.11?arch=s390" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.i386" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ia64" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc64" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390x" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.src as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.src" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.src", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.x86_64" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.i386" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.i386" }, "product_reference": "poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64" }, "product_reference": "poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc" }, "product_reference": "poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x" }, "product_reference": "poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64" }, "product_reference": "poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-0:0.5.4-4.4.el5_4.11.i386" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-0:0.5.4-4.4.el5_4.11.ia64" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc64" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390x" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-0:0.5.4-4.4.el5_4.11.src" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.src", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-0:0.5.4-4.4.el5_4.11.x86_64" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.i386" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.i386" }, "product_reference": "poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64" }, "product_reference": "poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc" }, "product_reference": "poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x" }, "product_reference": "poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64" }, "product_reference": "poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-0:0.5.4-4.4.el5_4.11.i386" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-0:0.5.4-4.4.el5_4.11.ia64" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc64" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390x" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-0:0.5.4-4.4.el5_4.11.src" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.src", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-0:0.5.4-4.4.el5_4.11.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-0:0.5.4-4.4.el5_4.11.x86_64" }, "product_reference": "poppler-0:0.5.4-4.4.el5_4.11.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64" }, "product_reference": "poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.i386" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64" }, "product_reference": "poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.i386" }, "product_reference": "poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64" }, "product_reference": "poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc" }, "product_reference": "poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x" }, "product_reference": "poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64" }, "product_reference": "poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "relates_to_product_reference": "5Server" } ] }, "vulnerabilities": [ { "cve": "CVE-2009-3603", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526915" } ], "notes": [ { "category": "description", "text": "Integer overflow in the SplashBitmap::SplashBitmap function in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1 might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information. NOTE: this issue reportedly exists because of an incomplete fix for CVE-2009-1188.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: SplashBitmap:: SplashBitmap integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-0:0.5.4-4.4.el5_4.11.src", "5Server:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3603" }, { "category": "external", "summary": "RHBZ#526915", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526915" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3603", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3603" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3603", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3603" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:48:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-0:0.5.4-4.4.el5_4.11.src", "5Server:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1504" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-0:0.5.4-4.4.el5_4.11.src", "5Server:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: SplashBitmap:: SplashBitmap integer overflow" }, { "acknowledgments": [ { "names": [ "Chris Rohlf" ] } ], "cve": "CVE-2009-3608", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-09-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526637" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: integer overflow in ObjectStream::ObjectStream (oCERT-2009-016)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-0:0.5.4-4.4.el5_4.11.src", "5Server:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3608" }, { "category": "external", "summary": "RHBZ#526637", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526637" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3608", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3608" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3608", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3608" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:48:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-0:0.5.4-4.4.el5_4.11.src", "5Server:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1504" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-0:0.5.4-4.4.el5_4.11.src", "5Server:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: integer overflow in ObjectStream::ObjectStream (oCERT-2009-016)" }, { "cve": "CVE-2009-3609", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-06-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526893" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: ImageStream:: ImageStream integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-0:0.5.4-4.4.el5_4.11.src", "5Server:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3609" }, { "category": "external", "summary": "RHBZ#526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3609", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3609" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:48:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-0:0.5.4-4.4.el5_4.11.src", "5Server:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1504" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client-Workstation:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client-Workstation:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-0:0.5.4-4.4.el5_4.11.src", "5Client:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Client:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-0:0.5.4-4.4.el5_4.11.src", "5Server:poppler-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-debuginfo-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.ppc64", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-devel-0:0.5.4-4.4.el5_4.11.x86_64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.i386", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ia64", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.ppc", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.s390x", "5Server:poppler-utils-0:0.5.4-4.4.el5_4.11.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "xpdf/poppler: ImageStream:: ImageStream integer overflow" } ] }
rhsa-2009_1513
Vulnerability from csaf_redhat
Published
2009-10-15 08:59
Modified
2024-11-22 03:22
Summary
Red Hat Security Advisory: cups security update
Notes
Topic
Updated cups packages that fix two security issues are now available for
Red Hat Enterprise Linux 5.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Details
The Common UNIX Printing System (CUPS) provides a portable printing layer
for UNIX operating systems. The CUPS "pdftops" filter converts Portable
Document Format (PDF) files to PostScript.
Two integer overflow flaws were found in the CUPS "pdftops" filter. An
attacker could create a malicious PDF file that would cause "pdftops" to
crash or, potentially, execute arbitrary code as the "lp" user if the file
was printed. (CVE-2009-3608, CVE-2009-3609)
Red Hat would like to thank Chris Rohlf for reporting the CVE-2009-3608
issue.
Users of cups are advised to upgrade to these updated packages, which
contain a backported patch to correct these issues. After installing the
update, the cupsd daemon will be restarted automatically.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated cups packages that fix two security issues are now available for\nRed Hat Enterprise Linux 5.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "The Common UNIX Printing System (CUPS) provides a portable printing layer\nfor UNIX operating systems. The CUPS \"pdftops\" filter converts Portable\nDocument Format (PDF) files to PostScript.\n\nTwo integer overflow flaws were found in the CUPS \"pdftops\" filter. An\nattacker could create a malicious PDF file that would cause \"pdftops\" to\ncrash or, potentially, execute arbitrary code as the \"lp\" user if the file\nwas printed. (CVE-2009-3608, CVE-2009-3609)\n\nRed Hat would like to thank Chris Rohlf for reporting the CVE-2009-3608\nissue.\n\nUsers of cups are advised to upgrade to these updated packages, which\ncontain a backported patch to correct these issues. After installing the\nupdate, the cupsd daemon will be restarted automatically.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2009:1513", "url": "https://access.redhat.com/errata/RHSA-2009:1513" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "526637", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526637" }, { "category": "external", "summary": "526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1513.json" } ], "title": "Red Hat Security Advisory: cups security update", "tracking": { "current_release_date": "2024-11-22T03:22:48+00:00", "generator": { "date": "2024-11-22T03:22:48+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2009:1513", "initial_release_date": "2009-10-15T08:59:00+00:00", "revision_history": [ { "date": "2009-10-15T08:59:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2009-10-15T05:00:56+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:22:48+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client_workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "cups-1:1.3.7-11.el5_4.3.src", "product": { "name": "cups-1:1.3.7-11.el5_4.3.src", "product_id": "cups-1:1.3.7-11.el5_4.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups@1.3.7-11.el5_4.3?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "product": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "product_id": "cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-debuginfo@1.3.7-11.el5_4.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-devel-1:1.3.7-11.el5_4.3.x86_64", "product": { "name": "cups-devel-1:1.3.7-11.el5_4.3.x86_64", "product_id": "cups-devel-1:1.3.7-11.el5_4.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-devel@1.3.7-11.el5_4.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-1:1.3.7-11.el5_4.3.x86_64", "product": { "name": "cups-1:1.3.7-11.el5_4.3.x86_64", "product_id": "cups-1:1.3.7-11.el5_4.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups@1.3.7-11.el5_4.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "product": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "product_id": "cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-lpd@1.3.7-11.el5_4.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-libs-1:1.3.7-11.el5_4.3.x86_64", "product": { "name": "cups-libs-1:1.3.7-11.el5_4.3.x86_64", "product_id": "cups-libs-1:1.3.7-11.el5_4.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-libs@1.3.7-11.el5_4.3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "product": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "product_id": "cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-debuginfo@1.3.7-11.el5_4.3?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-devel-1:1.3.7-11.el5_4.3.i386", "product": { "name": "cups-devel-1:1.3.7-11.el5_4.3.i386", "product_id": "cups-devel-1:1.3.7-11.el5_4.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-devel@1.3.7-11.el5_4.3?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-libs-1:1.3.7-11.el5_4.3.i386", "product": { "name": "cups-libs-1:1.3.7-11.el5_4.3.i386", "product_id": "cups-libs-1:1.3.7-11.el5_4.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-libs@1.3.7-11.el5_4.3?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-1:1.3.7-11.el5_4.3.i386", "product": { "name": "cups-1:1.3.7-11.el5_4.3.i386", "product_id": "cups-1:1.3.7-11.el5_4.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups@1.3.7-11.el5_4.3?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-lpd-1:1.3.7-11.el5_4.3.i386", "product": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.i386", "product_id": "cups-lpd-1:1.3.7-11.el5_4.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-lpd@1.3.7-11.el5_4.3?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "cups-1:1.3.7-11.el5_4.3.ia64", "product": { "name": "cups-1:1.3.7-11.el5_4.3.ia64", "product_id": "cups-1:1.3.7-11.el5_4.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups@1.3.7-11.el5_4.3?arch=ia64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-lpd-1:1.3.7-11.el5_4.3.ia64", "product": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.ia64", "product_id": "cups-lpd-1:1.3.7-11.el5_4.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-lpd@1.3.7-11.el5_4.3?arch=ia64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-libs-1:1.3.7-11.el5_4.3.ia64", "product": { "name": "cups-libs-1:1.3.7-11.el5_4.3.ia64", "product_id": "cups-libs-1:1.3.7-11.el5_4.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-libs@1.3.7-11.el5_4.3?arch=ia64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "product": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "product_id": "cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-debuginfo@1.3.7-11.el5_4.3?arch=ia64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-devel-1:1.3.7-11.el5_4.3.ia64", "product": { "name": "cups-devel-1:1.3.7-11.el5_4.3.ia64", "product_id": "cups-devel-1:1.3.7-11.el5_4.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-devel@1.3.7-11.el5_4.3?arch=ia64\u0026epoch=1" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "cups-1:1.3.7-11.el5_4.3.ppc", "product": { "name": "cups-1:1.3.7-11.el5_4.3.ppc", "product_id": "cups-1:1.3.7-11.el5_4.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups@1.3.7-11.el5_4.3?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-lpd-1:1.3.7-11.el5_4.3.ppc", "product": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.ppc", "product_id": "cups-lpd-1:1.3.7-11.el5_4.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-lpd@1.3.7-11.el5_4.3?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-libs-1:1.3.7-11.el5_4.3.ppc", "product": { "name": "cups-libs-1:1.3.7-11.el5_4.3.ppc", "product_id": "cups-libs-1:1.3.7-11.el5_4.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-libs@1.3.7-11.el5_4.3?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "product": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "product_id": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-debuginfo@1.3.7-11.el5_4.3?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-devel-1:1.3.7-11.el5_4.3.ppc", "product": { "name": "cups-devel-1:1.3.7-11.el5_4.3.ppc", "product_id": "cups-devel-1:1.3.7-11.el5_4.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-devel@1.3.7-11.el5_4.3?arch=ppc\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "cups-libs-1:1.3.7-11.el5_4.3.ppc64", "product": { "name": "cups-libs-1:1.3.7-11.el5_4.3.ppc64", "product_id": "cups-libs-1:1.3.7-11.el5_4.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-libs@1.3.7-11.el5_4.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "product": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "product_id": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-debuginfo@1.3.7-11.el5_4.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-devel-1:1.3.7-11.el5_4.3.ppc64", "product": { "name": "cups-devel-1:1.3.7-11.el5_4.3.ppc64", "product_id": "cups-devel-1:1.3.7-11.el5_4.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-devel@1.3.7-11.el5_4.3?arch=ppc64\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "cups-1:1.3.7-11.el5_4.3.s390x", "product": { "name": "cups-1:1.3.7-11.el5_4.3.s390x", "product_id": "cups-1:1.3.7-11.el5_4.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups@1.3.7-11.el5_4.3?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-lpd-1:1.3.7-11.el5_4.3.s390x", "product": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.s390x", "product_id": "cups-lpd-1:1.3.7-11.el5_4.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-lpd@1.3.7-11.el5_4.3?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-libs-1:1.3.7-11.el5_4.3.s390x", "product": { "name": "cups-libs-1:1.3.7-11.el5_4.3.s390x", "product_id": "cups-libs-1:1.3.7-11.el5_4.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-libs@1.3.7-11.el5_4.3?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "product": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "product_id": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-debuginfo@1.3.7-11.el5_4.3?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-devel-1:1.3.7-11.el5_4.3.s390x", "product": { "name": "cups-devel-1:1.3.7-11.el5_4.3.s390x", "product_id": "cups-devel-1:1.3.7-11.el5_4.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-devel@1.3.7-11.el5_4.3?arch=s390x\u0026epoch=1" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "cups-libs-1:1.3.7-11.el5_4.3.s390", "product": { "name": "cups-libs-1:1.3.7-11.el5_4.3.s390", "product_id": "cups-libs-1:1.3.7-11.el5_4.3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-libs@1.3.7-11.el5_4.3?arch=s390\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "product": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "product_id": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-debuginfo@1.3.7-11.el5_4.3?arch=s390\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-devel-1:1.3.7-11.el5_4.3.s390", "product": { "name": "cups-devel-1:1.3.7-11.el5_4.3.s390", "product_id": "cups-devel-1:1.3.7-11.el5_4.3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-devel@1.3.7-11.el5_4.3?arch=s390\u0026epoch=1" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.i386" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.ia64" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.ppc" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.s390x" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.src as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.src" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.src", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.x86_64" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.i386" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.s390" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.i386" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ia64" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ppc" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ppc64" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.s390" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.s390x" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.x86_64" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.i386" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ia64" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ppc" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ppc64" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.s390" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.s390x" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.x86_64" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.i386" }, "product_reference": "cups-lpd-1:1.3.7-11.el5_4.3.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.ia64" }, "product_reference": "cups-lpd-1:1.3.7-11.el5_4.3.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.ppc" }, "product_reference": "cups-lpd-1:1.3.7-11.el5_4.3.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.s390x" }, "product_reference": "cups-lpd-1:1.3.7-11.el5_4.3.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.x86_64" }, "product_reference": "cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-1:1.3.7-11.el5_4.3.i386" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-1:1.3.7-11.el5_4.3.ia64" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-1:1.3.7-11.el5_4.3.ppc" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-1:1.3.7-11.el5_4.3.s390x" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-1:1.3.7-11.el5_4.3.src" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.src", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-1:1.3.7-11.el5_4.3.x86_64" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.i386" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.s390" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-devel-1:1.3.7-11.el5_4.3.i386" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-devel-1:1.3.7-11.el5_4.3.ia64" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-devel-1:1.3.7-11.el5_4.3.ppc" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-devel-1:1.3.7-11.el5_4.3.ppc64" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-devel-1:1.3.7-11.el5_4.3.s390" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-devel-1:1.3.7-11.el5_4.3.s390x" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-devel-1:1.3.7-11.el5_4.3.x86_64" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-libs-1:1.3.7-11.el5_4.3.i386" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-libs-1:1.3.7-11.el5_4.3.ia64" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-libs-1:1.3.7-11.el5_4.3.ppc" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-libs-1:1.3.7-11.el5_4.3.ppc64" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-libs-1:1.3.7-11.el5_4.3.s390" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-libs-1:1.3.7-11.el5_4.3.s390x" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-libs-1:1.3.7-11.el5_4.3.x86_64" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-lpd-1:1.3.7-11.el5_4.3.i386" }, "product_reference": "cups-lpd-1:1.3.7-11.el5_4.3.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-lpd-1:1.3.7-11.el5_4.3.ia64" }, "product_reference": "cups-lpd-1:1.3.7-11.el5_4.3.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-lpd-1:1.3.7-11.el5_4.3.ppc" }, "product_reference": "cups-lpd-1:1.3.7-11.el5_4.3.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-lpd-1:1.3.7-11.el5_4.3.s390x" }, "product_reference": "cups-lpd-1:1.3.7-11.el5_4.3.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:cups-lpd-1:1.3.7-11.el5_4.3.x86_64" }, "product_reference": "cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-1:1.3.7-11.el5_4.3.i386" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-1:1.3.7-11.el5_4.3.ia64" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-1:1.3.7-11.el5_4.3.ppc" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-1:1.3.7-11.el5_4.3.s390x" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-1:1.3.7-11.el5_4.3.src" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.src", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.3.7-11.el5_4.3.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-1:1.3.7-11.el5_4.3.x86_64" }, "product_reference": "cups-1:1.3.7-11.el5_4.3.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.i386" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.s390" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64" }, "product_reference": "cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-devel-1:1.3.7-11.el5_4.3.i386" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-devel-1:1.3.7-11.el5_4.3.ia64" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-devel-1:1.3.7-11.el5_4.3.ppc" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-devel-1:1.3.7-11.el5_4.3.ppc64" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-devel-1:1.3.7-11.el5_4.3.s390" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-devel-1:1.3.7-11.el5_4.3.s390x" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.3.7-11.el5_4.3.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-devel-1:1.3.7-11.el5_4.3.x86_64" }, "product_reference": "cups-devel-1:1.3.7-11.el5_4.3.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-libs-1:1.3.7-11.el5_4.3.i386" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-libs-1:1.3.7-11.el5_4.3.ia64" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-libs-1:1.3.7-11.el5_4.3.ppc" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-libs-1:1.3.7-11.el5_4.3.ppc64" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-libs-1:1.3.7-11.el5_4.3.s390" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-libs-1:1.3.7-11.el5_4.3.s390x" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.3.7-11.el5_4.3.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-libs-1:1.3.7-11.el5_4.3.x86_64" }, "product_reference": "cups-libs-1:1.3.7-11.el5_4.3.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-lpd-1:1.3.7-11.el5_4.3.i386" }, "product_reference": "cups-lpd-1:1.3.7-11.el5_4.3.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-lpd-1:1.3.7-11.el5_4.3.ia64" }, "product_reference": "cups-lpd-1:1.3.7-11.el5_4.3.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-lpd-1:1.3.7-11.el5_4.3.ppc" }, "product_reference": "cups-lpd-1:1.3.7-11.el5_4.3.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-lpd-1:1.3.7-11.el5_4.3.s390x" }, "product_reference": "cups-lpd-1:1.3.7-11.el5_4.3.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "cups-lpd-1:1.3.7-11.el5_4.3.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:cups-lpd-1:1.3.7-11.el5_4.3.x86_64" }, "product_reference": "cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "relates_to_product_reference": "5Server" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Chris Rohlf" ] } ], "cve": "CVE-2009-3608", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-09-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526637" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: integer overflow in ObjectStream::ObjectStream (oCERT-2009-016)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.src", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-1:1.3.7-11.el5_4.3.i386", "5Client:cups-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-1:1.3.7-11.el5_4.3.src", "5Client:cups-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Client:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Client:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-1:1.3.7-11.el5_4.3.i386", "5Server:cups-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-1:1.3.7-11.el5_4.3.src", "5Server:cups-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Server:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Server:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3608" }, { "category": "external", "summary": "RHBZ#526637", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526637" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3608", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3608" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3608", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3608" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:59:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.src", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-1:1.3.7-11.el5_4.3.i386", "5Client:cups-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-1:1.3.7-11.el5_4.3.src", "5Client:cups-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Client:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Client:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-1:1.3.7-11.el5_4.3.i386", "5Server:cups-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-1:1.3.7-11.el5_4.3.src", "5Server:cups-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Server:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Server:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1513" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.src", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-1:1.3.7-11.el5_4.3.i386", "5Client:cups-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-1:1.3.7-11.el5_4.3.src", "5Client:cups-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Client:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Client:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-1:1.3.7-11.el5_4.3.i386", "5Server:cups-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-1:1.3.7-11.el5_4.3.src", "5Server:cups-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Server:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Server:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: integer overflow in ObjectStream::ObjectStream (oCERT-2009-016)" }, { "cve": "CVE-2009-3609", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-06-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526893" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: ImageStream:: ImageStream integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.src", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-1:1.3.7-11.el5_4.3.i386", "5Client:cups-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-1:1.3.7-11.el5_4.3.src", "5Client:cups-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Client:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Client:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-1:1.3.7-11.el5_4.3.i386", "5Server:cups-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-1:1.3.7-11.el5_4.3.src", "5Server:cups-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Server:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Server:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3609" }, { "category": "external", "summary": "RHBZ#526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3609", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3609" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:59:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.src", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-1:1.3.7-11.el5_4.3.i386", "5Client:cups-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-1:1.3.7-11.el5_4.3.src", "5Client:cups-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Client:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Client:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-1:1.3.7-11.el5_4.3.i386", "5Server:cups-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-1:1.3.7-11.el5_4.3.src", "5Server:cups-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Server:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Server:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1513" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.src", "5Client-Workstation:cups-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Client-Workstation:cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-1:1.3.7-11.el5_4.3.i386", "5Client:cups-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-1:1.3.7-11.el5_4.3.src", "5Client:cups-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Client:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Client:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Client:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Client:cups-lpd-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-1:1.3.7-11.el5_4.3.i386", "5Server:cups-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-1:1.3.7-11.el5_4.3.src", "5Server:cups-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.i386", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.s390", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-debuginfo-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.i386", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-devel-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-devel-1:1.3.7-11.el5_4.3.s390", "5Server:cups-devel-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-devel-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.i386", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-libs-1:1.3.7-11.el5_4.3.ppc64", "5Server:cups-libs-1:1.3.7-11.el5_4.3.s390", "5Server:cups-libs-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-libs-1:1.3.7-11.el5_4.3.x86_64", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.i386", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.ia64", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.ppc", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.s390x", "5Server:cups-lpd-1:1.3.7-11.el5_4.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "xpdf/poppler: ImageStream:: ImageStream integer overflow" } ] }
rhsa-2010_0399
Vulnerability from csaf_redhat
Published
2010-05-06 18:53
Modified
2024-11-22 03:22
Summary
Red Hat Security Advisory: tetex security update
Notes
Topic
Updated tetex packages that fix multiple security issues are now available
for Red Hat Enterprise Linux 4.
The Red Hat Security Response Team has rated this update as having moderate
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details
teTeX is an implementation of TeX. TeX takes a text file and a set of
formatting commands as input, and creates a typesetter-independent DeVice
Independent (DVI) file as output.
A buffer overflow flaw was found in the way teTeX processed virtual font
files when converting DVI files into PostScript. An attacker could create a
malicious DVI file that would cause the dvips executable to crash or,
potentially, execute arbitrary code. (CVE-2010-0827)
Multiple integer overflow flaws were found in the way teTeX processed
special commands when converting DVI files into PostScript. An attacker
could create a malicious DVI file that would cause the dvips executable to
crash or, potentially, execute arbitrary code. (CVE-2010-0739,
CVE-2010-1440)
A stack-based buffer overflow flaw was found in the way teTeX processed DVI
files containing HyperTeX references with long titles, when converting them
into PostScript. An attacker could create a malicious DVI file that would
cause the dvips executable to crash. (CVE-2007-5935)
teTeX embeds a copy of Xpdf, an open source Portable Document Format (PDF)
file viewer, to allow adding images in PDF format to the generated PDF
documents. The following issues affect Xpdf code:
Multiple integer overflow flaws were found in Xpdf's JBIG2 decoder. If a
local user generated a PDF file from a TeX document, referencing a
specially-crafted PDF file, it would cause Xpdf to crash or, potentially,
execute arbitrary code with the privileges of the user running pdflatex.
(CVE-2009-0147, CVE-2009-1179)
Multiple integer overflow flaws were found in Xpdf. If a local user
generated a PDF file from a TeX document, referencing a specially-crafted
PDF file, it would cause Xpdf to crash or, potentially, execute arbitrary
code with the privileges of the user running pdflatex. (CVE-2009-0791,
CVE-2009-3609)
A heap-based buffer overflow flaw was found in Xpdf's JBIG2 decoder. If a
local user generated a PDF file from a TeX document, referencing a
specially-crafted PDF file, it would cause Xpdf to crash or, potentially,
execute arbitrary code with the privileges of the user running pdflatex.
(CVE-2009-0195)
Multiple buffer overflow flaws were found in Xpdf's JBIG2 decoder. If a
local user generated a PDF file from a TeX document, referencing a
specially-crafted PDF file, it would cause Xpdf to crash or, potentially,
execute arbitrary code with the privileges of the user running pdflatex.
(CVE-2009-0146, CVE-2009-1182)
Multiple flaws were found in Xpdf's JBIG2 decoder that could lead to the
freeing of arbitrary memory. If a local user generated a PDF file from a
TeX document, referencing a specially-crafted PDF file, it would cause
Xpdf to crash or, potentially, execute arbitrary code with the privileges
of the user running pdflatex. (CVE-2009-0166, CVE-2009-1180)
Multiple input validation flaws were found in Xpdf's JBIG2 decoder. If a
local user generated a PDF file from a TeX document, referencing a
specially-crafted PDF file, it would cause Xpdf to crash or, potentially,
execute arbitrary code with the privileges of the user running pdflatex.
(CVE-2009-0800)
Multiple denial of service flaws were found in Xpdf's JBIG2 decoder. If a
local user generated a PDF file from a TeX document, referencing a
specially-crafted PDF file, it would cause Xpdf to crash. (CVE-2009-0799,
CVE-2009-1181, CVE-2009-1183)
Red Hat would like to thank Braden Thomas and Drew Yao of the Apple Product
Security team, Will Dormann of the CERT/CC, and Alin Rad Pop of Secunia
Research, for responsibly reporting the Xpdf flaws.
All users of tetex are advised to upgrade to these updated packages, which
contain backported patches to correct these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated tetex packages that fix multiple security issues are now available\nfor Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "teTeX is an implementation of TeX. TeX takes a text file and a set of\nformatting commands as input, and creates a typesetter-independent DeVice\nIndependent (DVI) file as output.\n\nA buffer overflow flaw was found in the way teTeX processed virtual font\nfiles when converting DVI files into PostScript. An attacker could create a\nmalicious DVI file that would cause the dvips executable to crash or,\npotentially, execute arbitrary code. (CVE-2010-0827)\n\nMultiple integer overflow flaws were found in the way teTeX processed\nspecial commands when converting DVI files into PostScript. An attacker\ncould create a malicious DVI file that would cause the dvips executable to\ncrash or, potentially, execute arbitrary code. (CVE-2010-0739,\nCVE-2010-1440)\n\nA stack-based buffer overflow flaw was found in the way teTeX processed DVI\nfiles containing HyperTeX references with long titles, when converting them\ninto PostScript. An attacker could create a malicious DVI file that would\ncause the dvips executable to crash. (CVE-2007-5935)\n\nteTeX embeds a copy of Xpdf, an open source Portable Document Format (PDF)\nfile viewer, to allow adding images in PDF format to the generated PDF\ndocuments. The following issues affect Xpdf code:\n\nMultiple integer overflow flaws were found in Xpdf\u0027s JBIG2 decoder. If a\nlocal user generated a PDF file from a TeX document, referencing a\nspecially-crafted PDF file, it would cause Xpdf to crash or, potentially,\nexecute arbitrary code with the privileges of the user running pdflatex.\n(CVE-2009-0147, CVE-2009-1179)\n\nMultiple integer overflow flaws were found in Xpdf. If a local user\ngenerated a PDF file from a TeX document, referencing a specially-crafted\nPDF file, it would cause Xpdf to crash or, potentially, execute arbitrary\ncode with the privileges of the user running pdflatex. (CVE-2009-0791,\nCVE-2009-3609)\n\nA heap-based buffer overflow flaw was found in Xpdf\u0027s JBIG2 decoder. If a\nlocal user generated a PDF file from a TeX document, referencing a\nspecially-crafted PDF file, it would cause Xpdf to crash or, potentially,\nexecute arbitrary code with the privileges of the user running pdflatex.\n(CVE-2009-0195)\n\nMultiple buffer overflow flaws were found in Xpdf\u0027s JBIG2 decoder. If a\nlocal user generated a PDF file from a TeX document, referencing a\nspecially-crafted PDF file, it would cause Xpdf to crash or, potentially,\nexecute arbitrary code with the privileges of the user running pdflatex.\n(CVE-2009-0146, CVE-2009-1182)\n\nMultiple flaws were found in Xpdf\u0027s JBIG2 decoder that could lead to the\nfreeing of arbitrary memory. If a local user generated a PDF file from a\nTeX document, referencing a specially-crafted PDF file, it would cause\nXpdf to crash or, potentially, execute arbitrary code with the privileges\nof the user running pdflatex. (CVE-2009-0166, CVE-2009-1180)\n\nMultiple input validation flaws were found in Xpdf\u0027s JBIG2 decoder. If a\nlocal user generated a PDF file from a TeX document, referencing a\nspecially-crafted PDF file, it would cause Xpdf to crash or, potentially,\nexecute arbitrary code with the privileges of the user running pdflatex.\n(CVE-2009-0800)\n\nMultiple denial of service flaws were found in Xpdf\u0027s JBIG2 decoder. If a\nlocal user generated a PDF file from a TeX document, referencing a\nspecially-crafted PDF file, it would cause Xpdf to crash. (CVE-2009-0799,\nCVE-2009-1181, CVE-2009-1183)\n\nRed Hat would like to thank Braden Thomas and Drew Yao of the Apple Product\nSecurity team, Will Dormann of the CERT/CC, and Alin Rad Pop of Secunia\nResearch, for responsibly reporting the Xpdf flaws.\n\nAll users of tetex are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2010:0399", "url": "https://access.redhat.com/errata/RHSA-2010:0399" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "368591", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=368591" }, { "category": "external", "summary": "490612", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=490612" }, { "category": "external", "summary": "490614", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=490614" }, { "category": "external", "summary": "490625", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=490625" }, { "category": "external", "summary": "491840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491840" }, { "category": "external", "summary": "495886", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495886" }, { "category": "external", "summary": "495887", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495887" }, { "category": "external", "summary": "495889", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495889" }, { "category": "external", "summary": "495892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495892" }, { "category": "external", "summary": "495894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495894" }, { "category": "external", "summary": "495896", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495896" }, { "category": "external", "summary": "495899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495899" }, { "category": "external", "summary": "526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "572914", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=572914" }, { "category": "external", "summary": "572941", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=572941" }, { "category": "external", "summary": "586819", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=586819" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0399.json" } ], "title": "Red Hat Security Advisory: tetex security update", "tracking": { "current_release_date": "2024-11-22T03:22:53+00:00", "generator": { "date": "2024-11-22T03:22:53+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2010:0399", "initial_release_date": "2010-05-06T18:53:00+00:00", "revision_history": [ { "date": "2010-05-06T18:53:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2010-05-06T14:53:52+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:22:53+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AS version 4", "product": { "name": "Red Hat Enterprise Linux AS version 4", "product_id": "4AS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::as" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop version 4", "product": { "name": "Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::desktop" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 4", "product": { "name": "Red Hat Enterprise Linux ES version 4", "product_id": "4ES", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 4", "product": { "name": "Red Hat Enterprise Linux WS version 4", "product_id": "4WS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "product": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "product_id": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@2.0.2-22.0.1.EL4.16?arch=ia64" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "product": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "product_id": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@2.0.2-22.0.1.EL4.16?arch=ia64" } } }, { "category": "product_version", "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "product": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "product_id": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-doc@2.0.2-22.0.1.EL4.16?arch=ia64" } } }, { "category": "product_version", "name": "tetex-0:2.0.2-22.0.1.EL4.16.ia64", "product": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.ia64", "product_id": "tetex-0:2.0.2-22.0.1.EL4.16.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@2.0.2-22.0.1.EL4.16?arch=ia64" } } }, { "category": "product_version", "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "product": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "product_id": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@2.0.2-22.0.1.EL4.16?arch=ia64" } } }, { "category": "product_version", "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "product": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "product_id": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@2.0.2-22.0.1.EL4.16?arch=ia64" } } }, { "category": "product_version", "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "product": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "product_id": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@2.0.2-22.0.1.EL4.16?arch=ia64" } } }, { "category": "product_version", "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "product": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "product_id": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@2.0.2-22.0.1.EL4.16?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "product": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "product_id": "tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@2.0.2-22.0.1.EL4.16?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "product": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "product_id": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@2.0.2-22.0.1.EL4.16?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "product": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "product_id": "tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-doc@2.0.2-22.0.1.EL4.16?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "product": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "product_id": "tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@2.0.2-22.0.1.EL4.16?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "product": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "product_id": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@2.0.2-22.0.1.EL4.16?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "product": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "product_id": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@2.0.2-22.0.1.EL4.16?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "product": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "product_id": "tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@2.0.2-22.0.1.EL4.16?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "product": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "product_id": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@2.0.2-22.0.1.EL4.16?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "product": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "product_id": "tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@2.0.2-22.0.1.EL4.16?arch=i386" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "product": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "product_id": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@2.0.2-22.0.1.EL4.16?arch=i386" } } }, { "category": "product_version", "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "product": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "product_id": "tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-doc@2.0.2-22.0.1.EL4.16?arch=i386" } } }, { "category": "product_version", "name": "tetex-0:2.0.2-22.0.1.EL4.16.i386", "product": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.i386", "product_id": "tetex-0:2.0.2-22.0.1.EL4.16.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@2.0.2-22.0.1.EL4.16?arch=i386" } } }, { "category": "product_version", "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "product": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "product_id": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@2.0.2-22.0.1.EL4.16?arch=i386" } } }, { "category": "product_version", "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "product": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "product_id": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@2.0.2-22.0.1.EL4.16?arch=i386" } } }, { "category": "product_version", "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "product": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "product_id": "tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@2.0.2-22.0.1.EL4.16?arch=i386" } } }, { "category": "product_version", "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "product": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "product_id": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@2.0.2-22.0.1.EL4.16?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "tetex-0:2.0.2-22.0.1.EL4.16.src", "product": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.src", "product_id": "tetex-0:2.0.2-22.0.1.EL4.16.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@2.0.2-22.0.1.EL4.16?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "product": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "product_id": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@2.0.2-22.0.1.EL4.16?arch=ppc" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "product": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "product_id": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@2.0.2-22.0.1.EL4.16?arch=ppc" } } }, { "category": "product_version", "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "product": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "product_id": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-doc@2.0.2-22.0.1.EL4.16?arch=ppc" } } }, { "category": "product_version", "name": "tetex-0:2.0.2-22.0.1.EL4.16.ppc", "product": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.ppc", "product_id": "tetex-0:2.0.2-22.0.1.EL4.16.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@2.0.2-22.0.1.EL4.16?arch=ppc" } } }, { "category": "product_version", "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "product": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "product_id": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@2.0.2-22.0.1.EL4.16?arch=ppc" } } }, { "category": "product_version", "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "product": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "product_id": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@2.0.2-22.0.1.EL4.16?arch=ppc" } } }, { "category": "product_version", "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "product": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "product_id": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@2.0.2-22.0.1.EL4.16?arch=ppc" } } }, { "category": "product_version", "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "product": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "product_id": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@2.0.2-22.0.1.EL4.16?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "product": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "product_id": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@2.0.2-22.0.1.EL4.16?arch=s390x" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "product": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "product_id": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@2.0.2-22.0.1.EL4.16?arch=s390x" } } }, { "category": "product_version", "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "product": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "product_id": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-doc@2.0.2-22.0.1.EL4.16?arch=s390x" } } }, { "category": "product_version", "name": "tetex-0:2.0.2-22.0.1.EL4.16.s390x", "product": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.s390x", "product_id": "tetex-0:2.0.2-22.0.1.EL4.16.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@2.0.2-22.0.1.EL4.16?arch=s390x" } } }, { "category": "product_version", "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "product": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "product_id": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@2.0.2-22.0.1.EL4.16?arch=s390x" } } }, { "category": "product_version", "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "product": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "product_id": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@2.0.2-22.0.1.EL4.16?arch=s390x" } } }, { "category": "product_version", "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "product": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "product_id": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@2.0.2-22.0.1.EL4.16?arch=s390x" } } }, { "category": "product_version", "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "product": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "product_id": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@2.0.2-22.0.1.EL4.16?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "product": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "product_id": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@2.0.2-22.0.1.EL4.16?arch=s390" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "product": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "product_id": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@2.0.2-22.0.1.EL4.16?arch=s390" } } }, { "category": "product_version", "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "product": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "product_id": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-doc@2.0.2-22.0.1.EL4.16?arch=s390" } } }, { "category": "product_version", "name": "tetex-0:2.0.2-22.0.1.EL4.16.s390", "product": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.s390", "product_id": "tetex-0:2.0.2-22.0.1.EL4.16.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@2.0.2-22.0.1.EL4.16?arch=s390" } } }, { "category": "product_version", "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "product": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "product_id": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@2.0.2-22.0.1.EL4.16?arch=s390" } } }, { "category": "product_version", "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "product": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "product_id": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@2.0.2-22.0.1.EL4.16?arch=s390" } } }, { "category": "product_version", "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "product": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "product_id": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@2.0.2-22.0.1.EL4.16?arch=s390" } } }, { "category": "product_version", "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "product": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "product_id": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@2.0.2-22.0.1.EL4.16?arch=s390" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.src as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.src", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.src as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.src", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.src as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.src", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.src as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.src", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" }, "product_reference": "tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "relates_to_product_reference": "4WS" } ] }, "vulnerabilities": [ { "cve": "CVE-2007-5935", "discovery_date": "2007-11-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "368591" } ], "notes": [ { "category": "description", "text": "Stack-based buffer overflow in hpc.c in dvips in teTeX and TeXlive 2007 and earlier allows user-assisted attackers to execute arbitrary code via a DVI file with a long href tag.", "title": "Vulnerability description" }, { "category": "summary", "text": "dvips -z buffer overflow with long href", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2007-5935\n\nThe Red Hat Product Security has rated this issue as having low security impact, a future update may address this flaw.", "title": "Statement" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-5935" }, { "category": "external", "summary": "RHBZ#368591", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=368591" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-5935", "url": "https://www.cve.org/CVERecord?id=CVE-2007-5935" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-5935", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-5935" } ], "release_date": "2007-10-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "dvips -z buffer overflow with long href" }, { "acknowledgments": [ { "names": [ "Drew Yao", "Braden Thomas" ], "organization": "Apple Product Security" } ], "cve": "CVE-2009-0146", "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "490612" } ], "notes": [ { "category": "description", "text": "Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2SymbolDict::setBitmap and (2) JBIG2Stream::readSymbolDictSeg.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: Multiple buffer overflows in JBIG2 decoder (setBitmap, readSymbolDictSeg) (CVE-2009-0195)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0146" }, { "category": "external", "summary": "RHBZ#490612", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=490612" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0146", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0146" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0146", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0146" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf: Multiple buffer overflows in JBIG2 decoder (setBitmap, readSymbolDictSeg) (CVE-2009-0195)" }, { "acknowledgments": [ { "names": [ "Braden Thomas" ] }, { "names": [ "Drew Yao" ], "organization": "Apple Product Security team" } ], "cve": "CVE-2009-0147", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "490614" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2Stream::readSymbolDictSeg, (2) JBIG2Stream::readSymbolDictSeg, and (3) JBIG2Stream::readGenericBitmap.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: Multiple integer overflows in JBIG2 decoder", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0147" }, { "category": "external", "summary": "RHBZ#490614", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=490614" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0147", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0147" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0147", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0147" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf: Multiple integer overflows in JBIG2 decoder" }, { "acknowledgments": [ { "names": [ "Braden Thomas" ] }, { "names": [ "Drew Yao" ], "organization": "Apple Product Security team" } ], "cve": "CVE-2009-0166", "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "490625" } ], "notes": [ { "category": "description", "text": "The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers a free of uninitialized memory.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: Freeing of potentially uninitialized memory in JBIG2 decoder", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0166" }, { "category": "external", "summary": "RHBZ#490625", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=490625" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0166", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0166" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0166", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0166" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "xpdf: Freeing of potentially uninitialized memory in JBIG2 decoder" }, { "acknowledgments": [ { "names": [ "Drew Yao", "Braden Thomas" ], "organization": "Apple Product Security" } ], "cve": "CVE-2009-0195", "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "490612" } ], "notes": [ { "category": "description", "text": "Heap-based buffer overflow in Xpdf 3.02pl2 and earlier, CUPS 1.3.9, and probably other products, allows remote attackers to execute arbitrary code via a PDF file with crafted JBIG2 symbol dictionary segments.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: Multiple buffer overflows in JBIG2 decoder (setBitmap, readSymbolDictSeg) (CVE-2009-0195)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0195" }, { "category": "external", "summary": "RHBZ#490612", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=490612" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0195", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0195" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0195", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0195" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf: Multiple buffer overflows in JBIG2 decoder (setBitmap, readSymbolDictSeg) (CVE-2009-0195)" }, { "cve": "CVE-2009-0791", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-03-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "491840" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops filter in CUPS 1.1.17, 1.1.22, and 1.3.7, GPdf, and kdegraphics KPDF, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file that triggers a heap-based buffer overflow, possibly related to (1) Decrypt.cxx, (2) FoFiTrueType.cxx, (3) gmem.c, (4) JBIG2Stream.cxx, and (5) PSOutputDev.cxx in pdftops/. NOTE: the JBIG2Stream.cxx vector may overlap CVE-2009-1179.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: multiple integer overflows", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0791" }, { "category": "external", "summary": "RHBZ#491840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491840" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0791", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0791" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0791", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0791" } ], "release_date": "2009-05-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "xpdf: multiple integer overflows" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-0799", "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495886" } ], "notes": [ { "category": "description", "text": "The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers an out-of-bounds read.", "title": "Vulnerability description" }, { "category": "summary", "text": "PDF JBIG2 decoder OOB read", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0799" }, { "category": "external", "summary": "RHBZ#495886", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495886" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0799", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0799" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0799", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0799" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "PDF JBIG2 decoder OOB read" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-0800", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495887" } ], "notes": [ { "category": "description", "text": "Multiple \"input validation flaws\" in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file.", "title": "Vulnerability description" }, { "category": "summary", "text": "PDF JBIG2 multiple input validation flaws", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0800" }, { "category": "external", "summary": "RHBZ#495887", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495887" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0800", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0800" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0800", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0800" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "PDF JBIG2 multiple input validation flaws" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-1179", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495889" } ], "notes": [ { "category": "description", "text": "Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file.", "title": "Vulnerability description" }, { "category": "summary", "text": "PDF JBIG2 integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1179" }, { "category": "external", "summary": "RHBZ#495889", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495889" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1179", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1179" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1179", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1179" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "PDF JBIG2 integer overflow" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-1180", "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495892" } ], "notes": [ { "category": "description", "text": "The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a free of invalid data.", "title": "Vulnerability description" }, { "category": "summary", "text": "PDF JBIG2 invalid free()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1180" }, { "category": "external", "summary": "RHBZ#495892", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495892" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1180", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1180" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1180", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1180" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "PDF JBIG2 invalid free()" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-1181", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495894" } ], "notes": [ { "category": "description", "text": "The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers a NULL pointer dereference.", "title": "Vulnerability description" }, { "category": "summary", "text": "PDF JBIG2 NULL dereference", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1181" }, { "category": "external", "summary": "RHBZ#495894", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495894" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1181", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1181" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1181", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1181" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "PDF JBIG2 NULL dereference" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-1182", "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495896" } ], "notes": [ { "category": "description", "text": "Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file.", "title": "Vulnerability description" }, { "category": "summary", "text": "PDF JBIG2 MMR decoder buffer overflows", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1182" }, { "category": "external", "summary": "RHBZ#495896", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495896" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1182", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1182" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1182", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1182" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "PDF JBIG2 MMR decoder buffer overflows" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-1183", "cwe": { "id": "CWE-835", "name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)" }, "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495899" } ], "notes": [ { "category": "description", "text": "The JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service (infinite loop and hang) via a crafted PDF file.", "title": "Vulnerability description" }, { "category": "summary", "text": "PDF JBIG2 MMR infinite loop DoS", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1183" }, { "category": "external", "summary": "RHBZ#495899", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495899" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1183", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1183" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1183", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1183" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "PDF JBIG2 MMR infinite loop DoS" }, { "cve": "CVE-2009-3609", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-06-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526893" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: ImageStream:: ImageStream integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3609" }, { "category": "external", "summary": "RHBZ#526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3609", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3609" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "xpdf/poppler: ImageStream:: ImageStream integer overflow" }, { "cve": "CVE-2010-0739", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2010-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "572941" } ], "notes": [ { "category": "description", "text": "Integer overflow in the predospecial function in dospecial.c in dvips in (1) TeX Live and (2) teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.", "title": "Vulnerability description" }, { "category": "summary", "text": "texlive: Integer overflow by processing special commands", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0739" }, { "category": "external", "summary": "RHBZ#572941", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=572941" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0739", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0739" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0739", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0739" } ], "release_date": "2010-04-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "texlive: Integer overflow by processing special commands" }, { "cve": "CVE-2010-0827", "discovery_date": "2010-03-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "572914" } ], "notes": [ { "category": "description", "text": "Integer overflow in dvips in TeX Live 2009 and earlier, and teTeX, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted virtual font (VF) file associated with a DVI file.", "title": "Vulnerability description" }, { "category": "summary", "text": "texlive: Buffer overflow flaw by processing virtual font files", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0827" }, { "category": "external", "summary": "RHBZ#572914", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=572914" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0827", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0827" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0827", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0827" } ], "release_date": "2010-03-25T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "texlive: Buffer overflow flaw by processing virtual font files" }, { "cve": "CVE-2010-1440", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2010-04-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "586819" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a special command in a DVI file, related to the (1) predospecial and (2) bbdospecial functions, a different vulnerability than CVE-2010-0739.", "title": "Vulnerability description" }, { "category": "summary", "text": "texlive: Integer overflow by processing special commands", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1440" }, { "category": "external", "summary": "RHBZ#586819", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=586819" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1440", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1440" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1440", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1440" } ], "release_date": "2010-05-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T18:53:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0399" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4AS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4AS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.src", "4Desktop:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4Desktop:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.src", "4ES:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4ES:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.src", "4WS:tetex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-afm-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-debuginfo-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-doc-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-dvips-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-fonts-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-latex-0:2.0.2-22.0.1.EL4.16.x86_64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.i386", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ia64", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.ppc", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.s390x", "4WS:tetex-xdvi-0:2.0.2-22.0.1.EL4.16.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "texlive: Integer overflow by processing special commands" } ] }
rhsa-2010_0401
Vulnerability from csaf_redhat
Published
2010-05-06 19:05
Modified
2024-11-22 03:23
Summary
Red Hat Security Advisory: tetex security update
Notes
Topic
Updated tetex packages that fix multiple security issues are now available
for Red Hat Enterprise Linux 3.
The Red Hat Security Response Team has rated this update as having moderate
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details
teTeX is an implementation of TeX. TeX takes a text file and a set of
formatting commands as input, and creates a typesetter-independent DeVice
Independent (DVI) file as output.
A buffer overflow flaw was found in the way teTeX processed virtual font
files when converting DVI files into PostScript. An attacker could create a
malicious DVI file that would cause the dvips executable to crash or,
potentially, execute arbitrary code. (CVE-2010-0827)
Multiple integer overflow flaws were found in the way teTeX processed
special commands when converting DVI files into PostScript. An attacker
could create a malicious DVI file that would cause the dvips executable to
crash or, potentially, execute arbitrary code. (CVE-2010-0739,
CVE-2010-1440)
A stack-based buffer overflow flaw was found in the way teTeX processed DVI
files containing HyperTeX references with long titles, when converting them
into PostScript. An attacker could create a malicious DVI file that would
cause the dvips executable to crash. (CVE-2007-5935)
teTeX embeds a copy of Xpdf, an open source Portable Document Format (PDF)
file viewer, to allow adding images in PDF format to the generated PDF
documents. The following issues affect Xpdf code:
Multiple integer overflow flaws were found in Xpdf. If a local user
generated a PDF file from a TeX document, referencing a specially-crafted
PDF file, it would cause Xpdf to crash or, potentially, execute arbitrary
code with the privileges of the user running pdflatex. (CVE-2009-0791,
CVE-2009-3609)
All users of tetex are advised to upgrade to these updated packages, which
contain backported patches to correct these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated tetex packages that fix multiple security issues are now available\nfor Red Hat Enterprise Linux 3.\n\nThe Red Hat Security Response Team has rated this update as having moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "teTeX is an implementation of TeX. TeX takes a text file and a set of\nformatting commands as input, and creates a typesetter-independent DeVice\nIndependent (DVI) file as output.\n\nA buffer overflow flaw was found in the way teTeX processed virtual font\nfiles when converting DVI files into PostScript. An attacker could create a\nmalicious DVI file that would cause the dvips executable to crash or,\npotentially, execute arbitrary code. (CVE-2010-0827)\n\nMultiple integer overflow flaws were found in the way teTeX processed\nspecial commands when converting DVI files into PostScript. An attacker\ncould create a malicious DVI file that would cause the dvips executable to\ncrash or, potentially, execute arbitrary code. (CVE-2010-0739,\nCVE-2010-1440)\n\nA stack-based buffer overflow flaw was found in the way teTeX processed DVI\nfiles containing HyperTeX references with long titles, when converting them\ninto PostScript. An attacker could create a malicious DVI file that would\ncause the dvips executable to crash. (CVE-2007-5935)\n\nteTeX embeds a copy of Xpdf, an open source Portable Document Format (PDF)\nfile viewer, to allow adding images in PDF format to the generated PDF\ndocuments. The following issues affect Xpdf code:\n\nMultiple integer overflow flaws were found in Xpdf. If a local user\ngenerated a PDF file from a TeX document, referencing a specially-crafted\nPDF file, it would cause Xpdf to crash or, potentially, execute arbitrary\ncode with the privileges of the user running pdflatex. (CVE-2009-0791,\nCVE-2009-3609)\n\nAll users of tetex are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2010:0401", "url": "https://access.redhat.com/errata/RHSA-2010:0401" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "368591", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=368591" }, { "category": "external", "summary": "491840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491840" }, { "category": "external", "summary": "526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "572914", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=572914" }, { "category": "external", "summary": "572941", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=572941" }, { "category": "external", "summary": "586819", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=586819" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0401.json" } ], "title": "Red Hat Security Advisory: tetex security update", "tracking": { "current_release_date": "2024-11-22T03:23:05+00:00", "generator": { "date": "2024-11-22T03:23:05+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2010:0401", "initial_release_date": "2010-05-06T19:05:00+00:00", "revision_history": [ { "date": "2010-05-06T19:05:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2010-05-06T15:10:40+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:23:05+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AS version 3", "product": { "name": "Red Hat Enterprise Linux AS version 3", "product_id": "3AS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::as" } } }, { "category": "product_name", "name": "Red Hat Desktop version 3", "product": { "name": "Red Hat Desktop version 3", "product_id": "3Desktop", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::desktop" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 3", "product": { "name": "Red Hat Enterprise Linux ES version 3", "product_id": "3ES", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 3", "product": { "name": "Red Hat Enterprise Linux WS version 3", "product_id": "3WS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "tetex-latex-0:1.0.7-67.19.ia64", "product": { "name": "tetex-latex-0:1.0.7-67.19.ia64", "product_id": "tetex-latex-0:1.0.7-67.19.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@1.0.7-67.19?arch=ia64" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:1.0.7-67.19.ia64", "product": { "name": "tetex-debuginfo-0:1.0.7-67.19.ia64", "product_id": "tetex-debuginfo-0:1.0.7-67.19.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@1.0.7-67.19?arch=ia64" } } }, { "category": "product_version", "name": "tetex-afm-0:1.0.7-67.19.ia64", "product": { "name": "tetex-afm-0:1.0.7-67.19.ia64", "product_id": "tetex-afm-0:1.0.7-67.19.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@1.0.7-67.19?arch=ia64" } } }, { "category": "product_version", "name": "tetex-0:1.0.7-67.19.ia64", "product": { "name": "tetex-0:1.0.7-67.19.ia64", "product_id": "tetex-0:1.0.7-67.19.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@1.0.7-67.19?arch=ia64" } } }, { "category": "product_version", "name": "tetex-dvips-0:1.0.7-67.19.ia64", "product": { "name": "tetex-dvips-0:1.0.7-67.19.ia64", "product_id": "tetex-dvips-0:1.0.7-67.19.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@1.0.7-67.19?arch=ia64" } } }, { "category": "product_version", "name": "tetex-fonts-0:1.0.7-67.19.ia64", "product": { "name": "tetex-fonts-0:1.0.7-67.19.ia64", "product_id": "tetex-fonts-0:1.0.7-67.19.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@1.0.7-67.19?arch=ia64" } } }, { "category": "product_version", "name": "tetex-xdvi-0:1.0.7-67.19.ia64", "product": { "name": "tetex-xdvi-0:1.0.7-67.19.ia64", "product_id": "tetex-xdvi-0:1.0.7-67.19.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@1.0.7-67.19?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "tetex-latex-0:1.0.7-67.19.x86_64", "product": { "name": "tetex-latex-0:1.0.7-67.19.x86_64", "product_id": "tetex-latex-0:1.0.7-67.19.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@1.0.7-67.19?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:1.0.7-67.19.x86_64", "product": { "name": "tetex-debuginfo-0:1.0.7-67.19.x86_64", "product_id": "tetex-debuginfo-0:1.0.7-67.19.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@1.0.7-67.19?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-afm-0:1.0.7-67.19.x86_64", "product": { "name": "tetex-afm-0:1.0.7-67.19.x86_64", "product_id": "tetex-afm-0:1.0.7-67.19.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@1.0.7-67.19?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-0:1.0.7-67.19.x86_64", "product": { "name": "tetex-0:1.0.7-67.19.x86_64", "product_id": "tetex-0:1.0.7-67.19.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@1.0.7-67.19?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-dvips-0:1.0.7-67.19.x86_64", "product": { "name": "tetex-dvips-0:1.0.7-67.19.x86_64", "product_id": "tetex-dvips-0:1.0.7-67.19.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@1.0.7-67.19?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-fonts-0:1.0.7-67.19.x86_64", "product": { "name": "tetex-fonts-0:1.0.7-67.19.x86_64", "product_id": "tetex-fonts-0:1.0.7-67.19.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@1.0.7-67.19?arch=x86_64" } } }, { "category": "product_version", "name": "tetex-xdvi-0:1.0.7-67.19.x86_64", "product": { "name": "tetex-xdvi-0:1.0.7-67.19.x86_64", "product_id": "tetex-xdvi-0:1.0.7-67.19.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@1.0.7-67.19?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "tetex-latex-0:1.0.7-67.19.i386", "product": { "name": "tetex-latex-0:1.0.7-67.19.i386", "product_id": "tetex-latex-0:1.0.7-67.19.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@1.0.7-67.19?arch=i386" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:1.0.7-67.19.i386", "product": { "name": "tetex-debuginfo-0:1.0.7-67.19.i386", "product_id": "tetex-debuginfo-0:1.0.7-67.19.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@1.0.7-67.19?arch=i386" } } }, { "category": "product_version", "name": "tetex-afm-0:1.0.7-67.19.i386", "product": { "name": "tetex-afm-0:1.0.7-67.19.i386", "product_id": "tetex-afm-0:1.0.7-67.19.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@1.0.7-67.19?arch=i386" } } }, { "category": "product_version", "name": "tetex-0:1.0.7-67.19.i386", "product": { "name": "tetex-0:1.0.7-67.19.i386", "product_id": "tetex-0:1.0.7-67.19.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@1.0.7-67.19?arch=i386" } } }, { "category": "product_version", "name": "tetex-dvips-0:1.0.7-67.19.i386", "product": { "name": "tetex-dvips-0:1.0.7-67.19.i386", "product_id": "tetex-dvips-0:1.0.7-67.19.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@1.0.7-67.19?arch=i386" } } }, { "category": "product_version", "name": "tetex-fonts-0:1.0.7-67.19.i386", "product": { "name": "tetex-fonts-0:1.0.7-67.19.i386", "product_id": "tetex-fonts-0:1.0.7-67.19.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@1.0.7-67.19?arch=i386" } } }, { "category": "product_version", "name": "tetex-xdvi-0:1.0.7-67.19.i386", "product": { "name": "tetex-xdvi-0:1.0.7-67.19.i386", "product_id": "tetex-xdvi-0:1.0.7-67.19.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@1.0.7-67.19?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "tetex-0:1.0.7-67.19.src", "product": { "name": "tetex-0:1.0.7-67.19.src", "product_id": "tetex-0:1.0.7-67.19.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@1.0.7-67.19?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "tetex-latex-0:1.0.7-67.19.ppc", "product": { "name": "tetex-latex-0:1.0.7-67.19.ppc", "product_id": "tetex-latex-0:1.0.7-67.19.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@1.0.7-67.19?arch=ppc" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:1.0.7-67.19.ppc", "product": { "name": "tetex-debuginfo-0:1.0.7-67.19.ppc", "product_id": "tetex-debuginfo-0:1.0.7-67.19.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@1.0.7-67.19?arch=ppc" } } }, { "category": "product_version", "name": "tetex-afm-0:1.0.7-67.19.ppc", "product": { "name": "tetex-afm-0:1.0.7-67.19.ppc", "product_id": "tetex-afm-0:1.0.7-67.19.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@1.0.7-67.19?arch=ppc" } } }, { "category": "product_version", "name": "tetex-0:1.0.7-67.19.ppc", "product": { "name": "tetex-0:1.0.7-67.19.ppc", "product_id": "tetex-0:1.0.7-67.19.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@1.0.7-67.19?arch=ppc" } } }, { "category": "product_version", "name": "tetex-dvips-0:1.0.7-67.19.ppc", "product": { "name": "tetex-dvips-0:1.0.7-67.19.ppc", "product_id": "tetex-dvips-0:1.0.7-67.19.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@1.0.7-67.19?arch=ppc" } } }, { "category": "product_version", "name": "tetex-fonts-0:1.0.7-67.19.ppc", "product": { "name": "tetex-fonts-0:1.0.7-67.19.ppc", "product_id": "tetex-fonts-0:1.0.7-67.19.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@1.0.7-67.19?arch=ppc" } } }, { "category": "product_version", "name": "tetex-xdvi-0:1.0.7-67.19.ppc", "product": { "name": "tetex-xdvi-0:1.0.7-67.19.ppc", "product_id": "tetex-xdvi-0:1.0.7-67.19.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@1.0.7-67.19?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "tetex-latex-0:1.0.7-67.19.s390x", "product": { "name": "tetex-latex-0:1.0.7-67.19.s390x", "product_id": "tetex-latex-0:1.0.7-67.19.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@1.0.7-67.19?arch=s390x" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:1.0.7-67.19.s390x", "product": { "name": "tetex-debuginfo-0:1.0.7-67.19.s390x", "product_id": "tetex-debuginfo-0:1.0.7-67.19.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@1.0.7-67.19?arch=s390x" } } }, { "category": "product_version", "name": "tetex-afm-0:1.0.7-67.19.s390x", "product": { "name": "tetex-afm-0:1.0.7-67.19.s390x", "product_id": "tetex-afm-0:1.0.7-67.19.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@1.0.7-67.19?arch=s390x" } } }, { "category": "product_version", "name": "tetex-0:1.0.7-67.19.s390x", "product": { "name": "tetex-0:1.0.7-67.19.s390x", "product_id": "tetex-0:1.0.7-67.19.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@1.0.7-67.19?arch=s390x" } } }, { "category": "product_version", "name": "tetex-dvips-0:1.0.7-67.19.s390x", "product": { "name": "tetex-dvips-0:1.0.7-67.19.s390x", "product_id": "tetex-dvips-0:1.0.7-67.19.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@1.0.7-67.19?arch=s390x" } } }, { "category": "product_version", "name": "tetex-fonts-0:1.0.7-67.19.s390x", "product": { "name": "tetex-fonts-0:1.0.7-67.19.s390x", "product_id": "tetex-fonts-0:1.0.7-67.19.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@1.0.7-67.19?arch=s390x" } } }, { "category": "product_version", "name": "tetex-xdvi-0:1.0.7-67.19.s390x", "product": { "name": "tetex-xdvi-0:1.0.7-67.19.s390x", "product_id": "tetex-xdvi-0:1.0.7-67.19.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@1.0.7-67.19?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "tetex-latex-0:1.0.7-67.19.s390", "product": { "name": "tetex-latex-0:1.0.7-67.19.s390", "product_id": "tetex-latex-0:1.0.7-67.19.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-latex@1.0.7-67.19?arch=s390" } } }, { "category": "product_version", "name": "tetex-debuginfo-0:1.0.7-67.19.s390", "product": { "name": "tetex-debuginfo-0:1.0.7-67.19.s390", "product_id": "tetex-debuginfo-0:1.0.7-67.19.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-debuginfo@1.0.7-67.19?arch=s390" } } }, { "category": "product_version", "name": "tetex-afm-0:1.0.7-67.19.s390", "product": { "name": "tetex-afm-0:1.0.7-67.19.s390", "product_id": "tetex-afm-0:1.0.7-67.19.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-afm@1.0.7-67.19?arch=s390" } } }, { "category": "product_version", "name": "tetex-0:1.0.7-67.19.s390", "product": { "name": "tetex-0:1.0.7-67.19.s390", "product_id": "tetex-0:1.0.7-67.19.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex@1.0.7-67.19?arch=s390" } } }, { "category": "product_version", "name": "tetex-dvips-0:1.0.7-67.19.s390", "product": { "name": "tetex-dvips-0:1.0.7-67.19.s390", "product_id": "tetex-dvips-0:1.0.7-67.19.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-dvips@1.0.7-67.19?arch=s390" } } }, { "category": "product_version", "name": "tetex-fonts-0:1.0.7-67.19.s390", "product": { "name": "tetex-fonts-0:1.0.7-67.19.s390", "product_id": "tetex-fonts-0:1.0.7-67.19.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-fonts@1.0.7-67.19?arch=s390" } } }, { "category": "product_version", "name": "tetex-xdvi-0:1.0.7-67.19.s390", "product": { "name": "tetex-xdvi-0:1.0.7-67.19.s390", "product_id": "tetex-xdvi-0:1.0.7-67.19.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/tetex-xdvi@1.0.7-67.19?arch=s390" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-0:1.0.7-67.19.i386" }, "product_reference": "tetex-0:1.0.7-67.19.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-0:1.0.7-67.19.s390" }, "product_reference": "tetex-0:1.0.7-67.19.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.src as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-0:1.0.7-67.19.src" }, "product_reference": "tetex-0:1.0.7-67.19.src", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-afm-0:1.0.7-67.19.i386" }, "product_reference": "tetex-afm-0:1.0.7-67.19.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-afm-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-afm-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-afm-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-afm-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-afm-0:1.0.7-67.19.s390" }, "product_reference": "tetex-afm-0:1.0.7-67.19.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-afm-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-afm-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-afm-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-afm-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-debuginfo-0:1.0.7-67.19.i386" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-debuginfo-0:1.0.7-67.19.s390" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-dvips-0:1.0.7-67.19.i386" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-dvips-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-dvips-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-dvips-0:1.0.7-67.19.s390" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-dvips-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-dvips-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-fonts-0:1.0.7-67.19.i386" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-fonts-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-fonts-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-fonts-0:1.0.7-67.19.s390" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-fonts-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-fonts-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-latex-0:1.0.7-67.19.i386" }, "product_reference": "tetex-latex-0:1.0.7-67.19.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-latex-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-latex-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-latex-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-latex-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-latex-0:1.0.7-67.19.s390" }, "product_reference": "tetex-latex-0:1.0.7-67.19.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-latex-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-latex-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-latex-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-latex-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-xdvi-0:1.0.7-67.19.i386" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-xdvi-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-xdvi-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-xdvi-0:1.0.7-67.19.s390" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-xdvi-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-0:1.0.7-67.19.i386" }, "product_reference": "tetex-0:1.0.7-67.19.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-0:1.0.7-67.19.s390" }, "product_reference": "tetex-0:1.0.7-67.19.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.src as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-0:1.0.7-67.19.src" }, "product_reference": "tetex-0:1.0.7-67.19.src", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-afm-0:1.0.7-67.19.i386" }, "product_reference": "tetex-afm-0:1.0.7-67.19.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-afm-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-afm-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-afm-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-afm-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-afm-0:1.0.7-67.19.s390" }, "product_reference": "tetex-afm-0:1.0.7-67.19.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-afm-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-afm-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-afm-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-dvips-0:1.0.7-67.19.i386" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-dvips-0:1.0.7-67.19.s390" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-fonts-0:1.0.7-67.19.i386" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-fonts-0:1.0.7-67.19.s390" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-latex-0:1.0.7-67.19.i386" }, "product_reference": "tetex-latex-0:1.0.7-67.19.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-latex-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-latex-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-latex-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-latex-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-latex-0:1.0.7-67.19.s390" }, "product_reference": "tetex-latex-0:1.0.7-67.19.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-latex-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-latex-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-latex-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-0:1.0.7-67.19.i386" }, "product_reference": "tetex-0:1.0.7-67.19.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-0:1.0.7-67.19.s390" }, "product_reference": "tetex-0:1.0.7-67.19.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.src as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-0:1.0.7-67.19.src" }, "product_reference": "tetex-0:1.0.7-67.19.src", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-afm-0:1.0.7-67.19.i386" }, "product_reference": "tetex-afm-0:1.0.7-67.19.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-afm-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-afm-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-afm-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-afm-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-afm-0:1.0.7-67.19.s390" }, "product_reference": "tetex-afm-0:1.0.7-67.19.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-afm-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-afm-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-afm-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-afm-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-debuginfo-0:1.0.7-67.19.i386" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-debuginfo-0:1.0.7-67.19.s390" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-dvips-0:1.0.7-67.19.i386" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-dvips-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-dvips-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-dvips-0:1.0.7-67.19.s390" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-dvips-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-dvips-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-fonts-0:1.0.7-67.19.i386" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-fonts-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-fonts-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-fonts-0:1.0.7-67.19.s390" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-fonts-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-fonts-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-latex-0:1.0.7-67.19.i386" }, "product_reference": "tetex-latex-0:1.0.7-67.19.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-latex-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-latex-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-latex-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-latex-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-latex-0:1.0.7-67.19.s390" }, "product_reference": "tetex-latex-0:1.0.7-67.19.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-latex-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-latex-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-latex-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-latex-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-xdvi-0:1.0.7-67.19.i386" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-xdvi-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-xdvi-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-xdvi-0:1.0.7-67.19.s390" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-xdvi-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-0:1.0.7-67.19.i386" }, "product_reference": "tetex-0:1.0.7-67.19.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-0:1.0.7-67.19.s390" }, "product_reference": "tetex-0:1.0.7-67.19.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.src as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-0:1.0.7-67.19.src" }, "product_reference": "tetex-0:1.0.7-67.19.src", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-afm-0:1.0.7-67.19.i386" }, "product_reference": "tetex-afm-0:1.0.7-67.19.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-afm-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-afm-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-afm-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-afm-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-afm-0:1.0.7-67.19.s390" }, "product_reference": "tetex-afm-0:1.0.7-67.19.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-afm-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-afm-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-afm-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-afm-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-afm-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-debuginfo-0:1.0.7-67.19.i386" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-debuginfo-0:1.0.7-67.19.s390" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-debuginfo-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-debuginfo-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-dvips-0:1.0.7-67.19.i386" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-dvips-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-dvips-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-dvips-0:1.0.7-67.19.s390" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-dvips-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-dvips-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-dvips-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-dvips-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-fonts-0:1.0.7-67.19.i386" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-fonts-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-fonts-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-fonts-0:1.0.7-67.19.s390" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-fonts-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-fonts-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-fonts-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-fonts-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-latex-0:1.0.7-67.19.i386" }, "product_reference": "tetex-latex-0:1.0.7-67.19.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-latex-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-latex-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-latex-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-latex-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-latex-0:1.0.7-67.19.s390" }, "product_reference": "tetex-latex-0:1.0.7-67.19.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-latex-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-latex-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-latex-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-latex-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-latex-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-xdvi-0:1.0.7-67.19.i386" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-xdvi-0:1.0.7-67.19.ia64" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-xdvi-0:1.0.7-67.19.ppc" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-xdvi-0:1.0.7-67.19.s390" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-xdvi-0:1.0.7-67.19.s390x" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "tetex-xdvi-0:1.0.7-67.19.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" }, "product_reference": "tetex-xdvi-0:1.0.7-67.19.x86_64", "relates_to_product_reference": "3WS" } ] }, "vulnerabilities": [ { "cve": "CVE-2007-5935", "discovery_date": "2007-11-06T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "368591" } ], "notes": [ { "category": "description", "text": "Stack-based buffer overflow in hpc.c in dvips in teTeX and TeXlive 2007 and earlier allows user-assisted attackers to execute arbitrary code via a DVI file with a long href tag.", "title": "Vulnerability description" }, { "category": "summary", "text": "dvips -z buffer overflow with long href", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2007-5935\n\nThe Red Hat Product Security has rated this issue as having low security impact, a future update may address this flaw.", "title": "Statement" } ], "product_status": { "fixed": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2007-5935" }, { "category": "external", "summary": "RHBZ#368591", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=368591" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2007-5935", "url": "https://www.cve.org/CVERecord?id=CVE-2007-5935" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-5935", "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-5935" } ], "release_date": "2007-10-17T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:05:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0401" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "dvips -z buffer overflow with long href" }, { "cve": "CVE-2009-0791", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-03-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "491840" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops filter in CUPS 1.1.17, 1.1.22, and 1.3.7, GPdf, and kdegraphics KPDF, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file that triggers a heap-based buffer overflow, possibly related to (1) Decrypt.cxx, (2) FoFiTrueType.cxx, (3) gmem.c, (4) JBIG2Stream.cxx, and (5) PSOutputDev.cxx in pdftops/. NOTE: the JBIG2Stream.cxx vector may overlap CVE-2009-1179.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: multiple integer overflows", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0791" }, { "category": "external", "summary": "RHBZ#491840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491840" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0791", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0791" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0791", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0791" } ], "release_date": "2009-05-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:05:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0401" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "xpdf: multiple integer overflows" }, { "cve": "CVE-2009-3609", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-06-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526893" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: ImageStream:: ImageStream integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3609" }, { "category": "external", "summary": "RHBZ#526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3609", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3609" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:05:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0401" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "xpdf/poppler: ImageStream:: ImageStream integer overflow" }, { "cve": "CVE-2010-0739", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2010-02-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "572941" } ], "notes": [ { "category": "description", "text": "Integer overflow in the predospecial function in dospecial.c in dvips in (1) TeX Live and (2) teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.", "title": "Vulnerability description" }, { "category": "summary", "text": "texlive: Integer overflow by processing special commands", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0739" }, { "category": "external", "summary": "RHBZ#572941", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=572941" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0739", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0739" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0739", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0739" } ], "release_date": "2010-04-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:05:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0401" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "texlive: Integer overflow by processing special commands" }, { "cve": "CVE-2010-0827", "discovery_date": "2010-03-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "572914" } ], "notes": [ { "category": "description", "text": "Integer overflow in dvips in TeX Live 2009 and earlier, and teTeX, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted virtual font (VF) file associated with a DVI file.", "title": "Vulnerability description" }, { "category": "summary", "text": "texlive: Buffer overflow flaw by processing virtual font files", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-0827" }, { "category": "external", "summary": "RHBZ#572914", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=572914" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-0827", "url": "https://www.cve.org/CVERecord?id=CVE-2010-0827" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-0827", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0827" } ], "release_date": "2010-03-25T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:05:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0401" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "texlive: Buffer overflow flaw by processing virtual font files" }, { "cve": "CVE-2010-1440", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2010-04-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "586819" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a special command in a DVI file, related to the (1) predospecial and (2) bbdospecial functions, a different vulnerability than CVE-2010-0739.", "title": "Vulnerability description" }, { "category": "summary", "text": "texlive: Integer overflow by processing special commands", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-1440" }, { "category": "external", "summary": "RHBZ#586819", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=586819" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-1440", "url": "https://www.cve.org/CVERecord?id=CVE-2010-1440" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-1440", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-1440" } ], "release_date": "2010-05-03T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-05-06T19:05:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0401" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "3AS:tetex-0:1.0.7-67.19.i386", "3AS:tetex-0:1.0.7-67.19.ia64", "3AS:tetex-0:1.0.7-67.19.ppc", "3AS:tetex-0:1.0.7-67.19.s390", "3AS:tetex-0:1.0.7-67.19.s390x", "3AS:tetex-0:1.0.7-67.19.src", "3AS:tetex-0:1.0.7-67.19.x86_64", "3AS:tetex-afm-0:1.0.7-67.19.i386", "3AS:tetex-afm-0:1.0.7-67.19.ia64", "3AS:tetex-afm-0:1.0.7-67.19.ppc", "3AS:tetex-afm-0:1.0.7-67.19.s390", "3AS:tetex-afm-0:1.0.7-67.19.s390x", "3AS:tetex-afm-0:1.0.7-67.19.x86_64", "3AS:tetex-debuginfo-0:1.0.7-67.19.i386", "3AS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3AS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390", "3AS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3AS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3AS:tetex-dvips-0:1.0.7-67.19.i386", "3AS:tetex-dvips-0:1.0.7-67.19.ia64", "3AS:tetex-dvips-0:1.0.7-67.19.ppc", "3AS:tetex-dvips-0:1.0.7-67.19.s390", "3AS:tetex-dvips-0:1.0.7-67.19.s390x", "3AS:tetex-dvips-0:1.0.7-67.19.x86_64", "3AS:tetex-fonts-0:1.0.7-67.19.i386", "3AS:tetex-fonts-0:1.0.7-67.19.ia64", "3AS:tetex-fonts-0:1.0.7-67.19.ppc", "3AS:tetex-fonts-0:1.0.7-67.19.s390", "3AS:tetex-fonts-0:1.0.7-67.19.s390x", "3AS:tetex-fonts-0:1.0.7-67.19.x86_64", "3AS:tetex-latex-0:1.0.7-67.19.i386", "3AS:tetex-latex-0:1.0.7-67.19.ia64", "3AS:tetex-latex-0:1.0.7-67.19.ppc", "3AS:tetex-latex-0:1.0.7-67.19.s390", "3AS:tetex-latex-0:1.0.7-67.19.s390x", "3AS:tetex-latex-0:1.0.7-67.19.x86_64", "3AS:tetex-xdvi-0:1.0.7-67.19.i386", "3AS:tetex-xdvi-0:1.0.7-67.19.ia64", "3AS:tetex-xdvi-0:1.0.7-67.19.ppc", "3AS:tetex-xdvi-0:1.0.7-67.19.s390", "3AS:tetex-xdvi-0:1.0.7-67.19.s390x", "3AS:tetex-xdvi-0:1.0.7-67.19.x86_64", "3Desktop:tetex-0:1.0.7-67.19.i386", "3Desktop:tetex-0:1.0.7-67.19.ia64", "3Desktop:tetex-0:1.0.7-67.19.ppc", "3Desktop:tetex-0:1.0.7-67.19.s390", "3Desktop:tetex-0:1.0.7-67.19.s390x", "3Desktop:tetex-0:1.0.7-67.19.src", "3Desktop:tetex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-afm-0:1.0.7-67.19.i386", "3Desktop:tetex-afm-0:1.0.7-67.19.ia64", "3Desktop:tetex-afm-0:1.0.7-67.19.ppc", "3Desktop:tetex-afm-0:1.0.7-67.19.s390", "3Desktop:tetex-afm-0:1.0.7-67.19.s390x", "3Desktop:tetex-afm-0:1.0.7-67.19.x86_64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.i386", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ia64", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.ppc", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.s390x", "3Desktop:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3Desktop:tetex-dvips-0:1.0.7-67.19.i386", "3Desktop:tetex-dvips-0:1.0.7-67.19.ia64", "3Desktop:tetex-dvips-0:1.0.7-67.19.ppc", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390", "3Desktop:tetex-dvips-0:1.0.7-67.19.s390x", "3Desktop:tetex-dvips-0:1.0.7-67.19.x86_64", "3Desktop:tetex-fonts-0:1.0.7-67.19.i386", "3Desktop:tetex-fonts-0:1.0.7-67.19.ia64", "3Desktop:tetex-fonts-0:1.0.7-67.19.ppc", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390", "3Desktop:tetex-fonts-0:1.0.7-67.19.s390x", "3Desktop:tetex-fonts-0:1.0.7-67.19.x86_64", "3Desktop:tetex-latex-0:1.0.7-67.19.i386", "3Desktop:tetex-latex-0:1.0.7-67.19.ia64", "3Desktop:tetex-latex-0:1.0.7-67.19.ppc", "3Desktop:tetex-latex-0:1.0.7-67.19.s390", "3Desktop:tetex-latex-0:1.0.7-67.19.s390x", "3Desktop:tetex-latex-0:1.0.7-67.19.x86_64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.i386", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ia64", "3Desktop:tetex-xdvi-0:1.0.7-67.19.ppc", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390", "3Desktop:tetex-xdvi-0:1.0.7-67.19.s390x", "3Desktop:tetex-xdvi-0:1.0.7-67.19.x86_64", "3ES:tetex-0:1.0.7-67.19.i386", "3ES:tetex-0:1.0.7-67.19.ia64", "3ES:tetex-0:1.0.7-67.19.ppc", "3ES:tetex-0:1.0.7-67.19.s390", "3ES:tetex-0:1.0.7-67.19.s390x", "3ES:tetex-0:1.0.7-67.19.src", "3ES:tetex-0:1.0.7-67.19.x86_64", "3ES:tetex-afm-0:1.0.7-67.19.i386", "3ES:tetex-afm-0:1.0.7-67.19.ia64", "3ES:tetex-afm-0:1.0.7-67.19.ppc", "3ES:tetex-afm-0:1.0.7-67.19.s390", "3ES:tetex-afm-0:1.0.7-67.19.s390x", "3ES:tetex-afm-0:1.0.7-67.19.x86_64", "3ES:tetex-debuginfo-0:1.0.7-67.19.i386", "3ES:tetex-debuginfo-0:1.0.7-67.19.ia64", "3ES:tetex-debuginfo-0:1.0.7-67.19.ppc", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390", "3ES:tetex-debuginfo-0:1.0.7-67.19.s390x", "3ES:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3ES:tetex-dvips-0:1.0.7-67.19.i386", "3ES:tetex-dvips-0:1.0.7-67.19.ia64", "3ES:tetex-dvips-0:1.0.7-67.19.ppc", "3ES:tetex-dvips-0:1.0.7-67.19.s390", "3ES:tetex-dvips-0:1.0.7-67.19.s390x", "3ES:tetex-dvips-0:1.0.7-67.19.x86_64", "3ES:tetex-fonts-0:1.0.7-67.19.i386", "3ES:tetex-fonts-0:1.0.7-67.19.ia64", "3ES:tetex-fonts-0:1.0.7-67.19.ppc", "3ES:tetex-fonts-0:1.0.7-67.19.s390", "3ES:tetex-fonts-0:1.0.7-67.19.s390x", "3ES:tetex-fonts-0:1.0.7-67.19.x86_64", "3ES:tetex-latex-0:1.0.7-67.19.i386", "3ES:tetex-latex-0:1.0.7-67.19.ia64", "3ES:tetex-latex-0:1.0.7-67.19.ppc", "3ES:tetex-latex-0:1.0.7-67.19.s390", "3ES:tetex-latex-0:1.0.7-67.19.s390x", "3ES:tetex-latex-0:1.0.7-67.19.x86_64", "3ES:tetex-xdvi-0:1.0.7-67.19.i386", "3ES:tetex-xdvi-0:1.0.7-67.19.ia64", "3ES:tetex-xdvi-0:1.0.7-67.19.ppc", "3ES:tetex-xdvi-0:1.0.7-67.19.s390", "3ES:tetex-xdvi-0:1.0.7-67.19.s390x", "3ES:tetex-xdvi-0:1.0.7-67.19.x86_64", "3WS:tetex-0:1.0.7-67.19.i386", "3WS:tetex-0:1.0.7-67.19.ia64", "3WS:tetex-0:1.0.7-67.19.ppc", "3WS:tetex-0:1.0.7-67.19.s390", "3WS:tetex-0:1.0.7-67.19.s390x", "3WS:tetex-0:1.0.7-67.19.src", "3WS:tetex-0:1.0.7-67.19.x86_64", "3WS:tetex-afm-0:1.0.7-67.19.i386", "3WS:tetex-afm-0:1.0.7-67.19.ia64", "3WS:tetex-afm-0:1.0.7-67.19.ppc", "3WS:tetex-afm-0:1.0.7-67.19.s390", "3WS:tetex-afm-0:1.0.7-67.19.s390x", "3WS:tetex-afm-0:1.0.7-67.19.x86_64", "3WS:tetex-debuginfo-0:1.0.7-67.19.i386", "3WS:tetex-debuginfo-0:1.0.7-67.19.ia64", "3WS:tetex-debuginfo-0:1.0.7-67.19.ppc", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390", "3WS:tetex-debuginfo-0:1.0.7-67.19.s390x", "3WS:tetex-debuginfo-0:1.0.7-67.19.x86_64", "3WS:tetex-dvips-0:1.0.7-67.19.i386", "3WS:tetex-dvips-0:1.0.7-67.19.ia64", "3WS:tetex-dvips-0:1.0.7-67.19.ppc", "3WS:tetex-dvips-0:1.0.7-67.19.s390", "3WS:tetex-dvips-0:1.0.7-67.19.s390x", "3WS:tetex-dvips-0:1.0.7-67.19.x86_64", "3WS:tetex-fonts-0:1.0.7-67.19.i386", "3WS:tetex-fonts-0:1.0.7-67.19.ia64", "3WS:tetex-fonts-0:1.0.7-67.19.ppc", "3WS:tetex-fonts-0:1.0.7-67.19.s390", "3WS:tetex-fonts-0:1.0.7-67.19.s390x", "3WS:tetex-fonts-0:1.0.7-67.19.x86_64", "3WS:tetex-latex-0:1.0.7-67.19.i386", "3WS:tetex-latex-0:1.0.7-67.19.ia64", "3WS:tetex-latex-0:1.0.7-67.19.ppc", "3WS:tetex-latex-0:1.0.7-67.19.s390", "3WS:tetex-latex-0:1.0.7-67.19.s390x", "3WS:tetex-latex-0:1.0.7-67.19.x86_64", "3WS:tetex-xdvi-0:1.0.7-67.19.i386", "3WS:tetex-xdvi-0:1.0.7-67.19.ia64", "3WS:tetex-xdvi-0:1.0.7-67.19.ppc", "3WS:tetex-xdvi-0:1.0.7-67.19.s390", "3WS:tetex-xdvi-0:1.0.7-67.19.s390x", "3WS:tetex-xdvi-0:1.0.7-67.19.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "texlive: Integer overflow by processing special commands" } ] }
rhsa-2009_1502
Vulnerability from csaf_redhat
Published
2009-10-15 08:26
Modified
2024-11-22 03:04
Summary
Red Hat Security Advisory: kdegraphics security update
Notes
Topic
Updated kdegraphics packages that fix multiple security issues are now
available for Red Hat Enterprise Linux 5.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
The kdegraphics packages contain applications for the K Desktop
Environment, including KPDF, a viewer for Portable Document Format (PDF)
files.
Multiple integer overflow flaws were found in KPDF. An attacker could
create a malicious PDF file that would cause KPDF to crash or, potentially,
execute arbitrary code when opened. (CVE-2009-0791, CVE-2009-1188,
CVE-2009-3604, CVE-2009-3606, CVE-2009-3608, CVE-2009-3609)
Red Hat would like to thank Adam Zabrocki for reporting the CVE-2009-3604
issue, and Chris Rohlf for reporting the CVE-2009-3608 issue.
Users are advised to upgrade to these updated packages, which contain a
backported patch to resolve these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated kdegraphics packages that fix multiple security issues are now\navailable for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "The kdegraphics packages contain applications for the K Desktop\nEnvironment, including KPDF, a viewer for Portable Document Format (PDF)\nfiles.\n\nMultiple integer overflow flaws were found in KPDF. An attacker could\ncreate a malicious PDF file that would cause KPDF to crash or, potentially,\nexecute arbitrary code when opened. (CVE-2009-0791, CVE-2009-1188,\nCVE-2009-3604, CVE-2009-3606, CVE-2009-3608, CVE-2009-3609)\n\nRed Hat would like to thank Adam Zabrocki for reporting the CVE-2009-3604\nissue, and Chris Rohlf for reporting the CVE-2009-3608 issue.\n\nUsers are advised to upgrade to these updated packages, which contain a\nbackported patch to resolve these issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2009:1502", "url": "https://access.redhat.com/errata/RHSA-2009:1502" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "491840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491840" }, { "category": "external", "summary": "495907", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495907" }, { "category": "external", "summary": "526637", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526637" }, { "category": "external", "summary": "526877", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526877" }, { "category": "external", "summary": "526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "526911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526911" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1502.json" } ], "title": "Red Hat Security Advisory: kdegraphics security update", "tracking": { "current_release_date": "2024-11-22T03:04:04+00:00", "generator": { "date": "2024-11-22T03:04:04+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2009:1502", "initial_release_date": "2009-10-15T08:26:00+00:00", "revision_history": [ { "date": "2009-10-15T08:26:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2009-10-15T04:26:05+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:04:04+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)", "product_id": "5Server-DPAS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_productivity:5" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client_workstation" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "product": { "name": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "product_id": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics-debuginfo@3.5.4-15.el5_4.2?arch=x86_64\u0026epoch=7" } } }, { "category": "product_version", "name": "kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "product": { "name": "kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "product_id": "kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics-devel@3.5.4-15.el5_4.2?arch=x86_64\u0026epoch=7" } } }, { "category": "product_version", "name": "kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "product": { "name": "kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "product_id": "kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics@3.5.4-15.el5_4.2?arch=x86_64\u0026epoch=7" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "product": { "name": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "product_id": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics-debuginfo@3.5.4-15.el5_4.2?arch=i386\u0026epoch=7" } } }, { "category": "product_version", "name": "kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "product": { "name": "kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "product_id": "kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics-devel@3.5.4-15.el5_4.2?arch=i386\u0026epoch=7" } } }, { "category": "product_version", "name": "kdegraphics-7:3.5.4-15.el5_4.2.i386", "product": { "name": "kdegraphics-7:3.5.4-15.el5_4.2.i386", "product_id": "kdegraphics-7:3.5.4-15.el5_4.2.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics@3.5.4-15.el5_4.2?arch=i386\u0026epoch=7" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "kdegraphics-7:3.5.4-15.el5_4.2.src", "product": { "name": "kdegraphics-7:3.5.4-15.el5_4.2.src", "product_id": "kdegraphics-7:3.5.4-15.el5_4.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/kdegraphics@3.5.4-15.el5_4.2?arch=src\u0026epoch=7" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.5.4-15.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386" }, "product_reference": "kdegraphics-7:3.5.4-15.el5_4.2.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.5.4-15.el5_4.2.src as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src" }, "product_reference": "kdegraphics-7:3.5.4-15.el5_4.2.src", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.5.4-15.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64" }, "product_reference": "kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386" }, "product_reference": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64" }, "product_reference": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.5.4-15.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386" }, "product_reference": "kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" }, "product_reference": "kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.5.4-15.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386" }, "product_reference": "kdegraphics-7:3.5.4-15.el5_4.2.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.5.4-15.el5_4.2.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src" }, "product_reference": "kdegraphics-7:3.5.4-15.el5_4.2.src", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.5.4-15.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64" }, "product_reference": "kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386" }, "product_reference": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64" }, "product_reference": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.5.4-15.el5_4.2.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386" }, "product_reference": "kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" }, "product_reference": "kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.5.4-15.el5_4.2.i386 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)", "product_id": "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386" }, "product_reference": "kdegraphics-7:3.5.4-15.el5_4.2.i386", "relates_to_product_reference": "5Server-DPAS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.5.4-15.el5_4.2.src as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)", "product_id": "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src" }, "product_reference": "kdegraphics-7:3.5.4-15.el5_4.2.src", "relates_to_product_reference": "5Server-DPAS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-7:3.5.4-15.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)", "product_id": "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64" }, "product_reference": "kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "relates_to_product_reference": "5Server-DPAS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)", "product_id": "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386" }, "product_reference": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "relates_to_product_reference": "5Server-DPAS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)", "product_id": "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64" }, "product_reference": "kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "relates_to_product_reference": "5Server-DPAS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.5.4-15.el5_4.2.i386 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)", "product_id": "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386" }, "product_reference": "kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "relates_to_product_reference": "5Server-DPAS" }, { "category": "default_component_of", "full_product_name": { "name": "kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)", "product_id": "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" }, "product_reference": "kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "relates_to_product_reference": "5Server-DPAS" } ] }, "vulnerabilities": [ { "cve": "CVE-2009-0791", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-03-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "491840" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops filter in CUPS 1.1.17, 1.1.22, and 1.3.7, GPdf, and kdegraphics KPDF, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file that triggers a heap-based buffer overflow, possibly related to (1) Decrypt.cxx, (2) FoFiTrueType.cxx, (3) gmem.c, (4) JBIG2Stream.cxx, and (5) PSOutputDev.cxx in pdftops/. NOTE: the JBIG2Stream.cxx vector may overlap CVE-2009-1179.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: multiple integer overflows", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0791" }, { "category": "external", "summary": "RHBZ#491840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491840" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0791", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0791" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0791", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0791" } ], "release_date": "2009-05-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:26:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1502" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "xpdf: multiple integer overflows" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-1188", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495907" } ], "notes": [ { "category": "description", "text": "Integer overflow in the JBIG2 decoding feature in the SplashBitmap::SplashBitmap function in SplashBitmap.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.10.6, as used in GPdf and kdegraphics KPDF, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: SplashBitmap integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1188" }, { "category": "external", "summary": "RHBZ#495907", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495907" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1188", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1188" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1188", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1188" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:26:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1502" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: SplashBitmap integer overflow" }, { "acknowledgments": [ { "names": [ "Adam Zabrocki" ] } ], "cve": "CVE-2009-3604", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526911" } ], "notes": [ { "category": "description", "text": "The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document that triggers a NULL pointer dereference or a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: Splash:: drawImage integer overflow and missing allocation return value check", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3604" }, { "category": "external", "summary": "RHBZ#526911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526911" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3604", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3604" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3604", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3604" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:26:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1502" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: Splash:: drawImage integer overflow and missing allocation return value check" }, { "cve": "CVE-2009-3606", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-06-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526877" } ], "notes": [ { "category": "description", "text": "Integer overflow in the PSOutputDev::doImageL1Sep function in Xpdf before 3.02pl4, and Poppler 0.x, as used in kdegraphics KPDF, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: PSOutputDev:: doImageL1Sep integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3606" }, { "category": "external", "summary": "RHBZ#526877", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526877" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3606", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3606" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3606", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3606" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:26:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1502" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.7, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "xpdf/poppler: PSOutputDev:: doImageL1Sep integer overflow" }, { "acknowledgments": [ { "names": [ "Chris Rohlf" ] } ], "cve": "CVE-2009-3608", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-09-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526637" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: integer overflow in ObjectStream::ObjectStream (oCERT-2009-016)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3608" }, { "category": "external", "summary": "RHBZ#526637", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526637" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3608", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3608" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3608", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3608" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:26:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1502" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: integer overflow in ObjectStream::ObjectStream (oCERT-2009-016)" }, { "cve": "CVE-2009-3609", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-06-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526893" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: ImageStream:: ImageStream integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3609" }, { "category": "external", "summary": "RHBZ#526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3609", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3609" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:26:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1502" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client-Workstation:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client-Workstation:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Client:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Client:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.src", "5Server-DPAS:kdegraphics-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-debuginfo-7:3.5.4-15.el5_4.2.x86_64", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.i386", "5Server-DPAS:kdegraphics-devel-7:3.5.4-15.el5_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "xpdf/poppler: ImageStream:: ImageStream integer overflow" } ] }
rhsa-2010_0755
Vulnerability from csaf_redhat
Published
2010-10-07 17:45
Modified
2024-11-22 03:44
Summary
Red Hat Security Advisory: cups security update
Notes
Topic
Updated cups packages that fix multiple security issues are now available
for Red Hat Enterprise Linux 4.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
The Common UNIX Printing System (CUPS) provides a portable printing layer
for UNIX operating systems. The CUPS "pdftops" filter converts Portable
Document Format (PDF) files to PostScript.
Multiple flaws were discovered in the CUPS "pdftops" filter. An attacker
could create a malicious PDF file that, when printed, would cause "pdftops"
to crash or, potentially, execute arbitrary code as the "lp" user.
(CVE-2010-3702, CVE-2009-3609)
Users of cups are advised to upgrade to these updated packages, which
contain backported patches to correct these issues. After installing this
update, the cupsd daemon will be restarted automatically.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated cups packages that fix multiple security issues are now available\nfor Red Hat Enterprise Linux 4.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "The Common UNIX Printing System (CUPS) provides a portable printing layer\nfor UNIX operating systems. The CUPS \"pdftops\" filter converts Portable\nDocument Format (PDF) files to PostScript.\n\nMultiple flaws were discovered in the CUPS \"pdftops\" filter. An attacker\ncould create a malicious PDF file that, when printed, would cause \"pdftops\"\nto crash or, potentially, execute arbitrary code as the \"lp\" user.\n(CVE-2010-3702, CVE-2009-3609)\n\nUsers of cups are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. After installing this\nupdate, the cupsd daemon will be restarted automatically.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2010:0755", "url": "https://access.redhat.com/errata/RHSA-2010:0755" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "595245", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=595245" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0755.json" } ], "title": "Red Hat Security Advisory: cups security update", "tracking": { "current_release_date": "2024-11-22T03:44:58+00:00", "generator": { "date": "2024-11-22T03:44:58+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2010:0755", "initial_release_date": "2010-10-07T17:45:00+00:00", "revision_history": [ { "date": "2010-10-07T17:45:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2010-10-07T13:48:32+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:44:58+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AS version 4", "product": { "name": "Red Hat Enterprise Linux AS version 4", "product_id": "4AS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::as" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop version 4", "product": { "name": "Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::desktop" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 4", "product": { "name": "Red Hat Enterprise Linux ES version 4", "product_id": "4ES", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 4", "product": { "name": "Red Hat Enterprise Linux WS version 4", "product_id": "4WS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "product": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "product_id": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-libs@1.1.22-0.rc1.9.32.el4_8.10?arch=ia64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "product": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "product_id": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups@1.1.22-0.rc1.9.32.el4_8.10?arch=ia64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "product": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "product_id": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-devel@1.1.22-0.rc1.9.32.el4_8.10?arch=ia64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "product": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "product_id": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-debuginfo@1.1.22-0.rc1.9.32.el4_8.10?arch=ia64\u0026epoch=1" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "product": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "product_id": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-libs@1.1.22-0.rc1.9.32.el4_8.10?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "product": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "product_id": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-debuginfo@1.1.22-0.rc1.9.32.el4_8.10?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "product": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "product_id": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups@1.1.22-0.rc1.9.32.el4_8.10?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "product": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "product_id": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-devel@1.1.22-0.rc1.9.32.el4_8.10?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "product": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "product_id": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-libs@1.1.22-0.rc1.9.32.el4_8.10?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "product": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "product_id": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups@1.1.22-0.rc1.9.32.el4_8.10?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "product": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "product_id": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-devel@1.1.22-0.rc1.9.32.el4_8.10?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "product": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "product_id": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-debuginfo@1.1.22-0.rc1.9.32.el4_8.10?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "product": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "product_id": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups@1.1.22-0.rc1.9.32.el4_8.10?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "product": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "product_id": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-libs@1.1.22-0.rc1.9.32.el4_8.10?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "product": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "product_id": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-debuginfo@1.1.22-0.rc1.9.32.el4_8.10?arch=ppc64\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "product": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "product_id": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-libs@1.1.22-0.rc1.9.32.el4_8.10?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "product": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "product_id": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups@1.1.22-0.rc1.9.32.el4_8.10?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "product": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "product_id": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-devel@1.1.22-0.rc1.9.32.el4_8.10?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "product": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "product_id": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-debuginfo@1.1.22-0.rc1.9.32.el4_8.10?arch=ppc\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "product": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "product_id": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-libs@1.1.22-0.rc1.9.32.el4_8.10?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "product": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "product_id": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups@1.1.22-0.rc1.9.32.el4_8.10?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "product": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "product_id": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-devel@1.1.22-0.rc1.9.32.el4_8.10?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "product": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "product_id": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-debuginfo@1.1.22-0.rc1.9.32.el4_8.10?arch=s390x\u0026epoch=1" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "product": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "product_id": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-libs@1.1.22-0.rc1.9.32.el4_8.10?arch=s390\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "product": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "product_id": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-debuginfo@1.1.22-0.rc1.9.32.el4_8.10?arch=s390\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "product": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "product_id": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups@1.1.22-0.rc1.9.32.el4_8.10?arch=s390\u0026epoch=1" } } }, { "category": "product_version", "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "product": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "product_id": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/cups-devel@1.1.22-0.rc1.9.32.el4_8.10?arch=s390\u0026epoch=1" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.src as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.src as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.src as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.src as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" }, "product_reference": "cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" }, "product_reference": "cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" }, "product_reference": "cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" }, "product_reference": "cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "relates_to_product_reference": "4WS" } ] }, "vulnerabilities": [ { "cve": "CVE-2009-3609", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-06-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526893" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: ImageStream:: ImageStream integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3609" }, { "category": "external", "summary": "RHBZ#526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3609", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3609" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-10-07T17:45:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0755" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "xpdf/poppler: ImageStream:: ImageStream integer overflow" }, { "cve": "CVE-2010-3702", "discovery_date": "2010-05-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "595245" } ], "notes": [ { "category": "description", "text": "The Gfx::getPos function in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, CUPS, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service (crash) via unknown vectors that trigger an uninitialized pointer dereference.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: uninitialized Gfx::parser pointer dereference", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2010-3702" }, { "category": "external", "summary": "RHBZ#595245", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=595245" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2010-3702", "url": "https://www.cve.org/CVERecord?id=CVE-2010-3702" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2010-3702", "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-3702" } ], "release_date": "2010-09-24T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2010-10-07T17:45:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2010:0755" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4AS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4AS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4Desktop:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4Desktop:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4ES:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4ES:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.src", "4WS:cups-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-debuginfo-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-devel-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.i386", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ia64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.ppc64", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.s390x", "4WS:cups-libs-1:1.1.22-0.rc1.9.32.el4_8.10.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf: uninitialized Gfx::parser pointer dereference" } ] }
rhsa-2009_1501
Vulnerability from csaf_redhat
Published
2009-10-15 08:34
Modified
2024-11-22 03:04
Summary
Red Hat Security Advisory: xpdf security update
Notes
Topic
An updated xpdf package that fixes multiple security issues is now
available for Red Hat Enterprise Linux 4.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
Xpdf is an X Window System based viewer for Portable Document Format (PDF)
files.
Multiple integer overflow flaws were found in Xpdf. An attacker could
create a malicious PDF file that would cause Xpdf to crash or, potentially,
execute arbitrary code when opened. (CVE-2009-0791, CVE-2009-1188,
CVE-2009-3604, CVE-2009-3606, CVE-2009-3608, CVE-2009-3609)
Red Hat would like to thank Adam Zabrocki for reporting the CVE-2009-3604
issue, and Chris Rohlf for reporting the CVE-2009-3608 issue.
Users are advised to upgrade to this updated package, which contains a
backported patch to correct these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An updated xpdf package that fixes multiple security issues is now\navailable for Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "Xpdf is an X Window System based viewer for Portable Document Format (PDF)\nfiles.\n\nMultiple integer overflow flaws were found in Xpdf. An attacker could\ncreate a malicious PDF file that would cause Xpdf to crash or, potentially,\nexecute arbitrary code when opened. (CVE-2009-0791, CVE-2009-1188,\nCVE-2009-3604, CVE-2009-3606, CVE-2009-3608, CVE-2009-3609)\n\nRed Hat would like to thank Adam Zabrocki for reporting the CVE-2009-3604\nissue, and Chris Rohlf for reporting the CVE-2009-3608 issue.\n\nUsers are advised to upgrade to this updated package, which contains a\nbackported patch to correct these issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2009:1501", "url": "https://access.redhat.com/errata/RHSA-2009:1501" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "491840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491840" }, { "category": "external", "summary": "495907", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495907" }, { "category": "external", "summary": "526637", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526637" }, { "category": "external", "summary": "526877", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526877" }, { "category": "external", "summary": "526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "526911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526911" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1501.json" } ], "title": "Red Hat Security Advisory: xpdf security update", "tracking": { "current_release_date": "2024-11-22T03:04:00+00:00", "generator": { "date": "2024-11-22T03:04:00+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2009:1501", "initial_release_date": "2009-10-15T08:34:00+00:00", "revision_history": [ { "date": "2009-10-15T08:34:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2009-10-15T04:34:24+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T03:04:00+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AS version 4", "product": { "name": "Red Hat Enterprise Linux AS version 4", "product_id": "4AS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::as" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop version 4", "product": { "name": "Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::desktop" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 4", "product": { "name": "Red Hat Enterprise Linux ES version 4", "product_id": "4ES", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 4", "product": { "name": "Red Hat Enterprise Linux WS version 4", "product_id": "4WS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "product": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "product_id": "xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf-debuginfo@3.00-22.el4_8.1?arch=ia64\u0026epoch=1" } } }, { "category": "product_version", "name": "xpdf-1:3.00-22.el4_8.1.ia64", "product": { "name": "xpdf-1:3.00-22.el4_8.1.ia64", "product_id": "xpdf-1:3.00-22.el4_8.1.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf@3.00-22.el4_8.1?arch=ia64\u0026epoch=1" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "product": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "product_id": "xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf-debuginfo@3.00-22.el4_8.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "xpdf-1:3.00-22.el4_8.1.x86_64", "product": { "name": "xpdf-1:3.00-22.el4_8.1.x86_64", "product_id": "xpdf-1:3.00-22.el4_8.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf@3.00-22.el4_8.1?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "product": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "product_id": "xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf-debuginfo@3.00-22.el4_8.1?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "xpdf-1:3.00-22.el4_8.1.i386", "product": { "name": "xpdf-1:3.00-22.el4_8.1.i386", "product_id": "xpdf-1:3.00-22.el4_8.1.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf@3.00-22.el4_8.1?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "xpdf-1:3.00-22.el4_8.1.src", "product": { "name": "xpdf-1:3.00-22.el4_8.1.src", "product_id": "xpdf-1:3.00-22.el4_8.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf@3.00-22.el4_8.1?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "product": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "product_id": "xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf-debuginfo@3.00-22.el4_8.1?arch=ppc\u0026epoch=1" } } }, { "category": "product_version", "name": "xpdf-1:3.00-22.el4_8.1.ppc", "product": { "name": "xpdf-1:3.00-22.el4_8.1.ppc", "product_id": "xpdf-1:3.00-22.el4_8.1.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf@3.00-22.el4_8.1?arch=ppc\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "product": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "product_id": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf-debuginfo@3.00-22.el4_8.1?arch=s390x\u0026epoch=1" } } }, { "category": "product_version", "name": "xpdf-1:3.00-22.el4_8.1.s390x", "product": { "name": "xpdf-1:3.00-22.el4_8.1.s390x", "product_id": "xpdf-1:3.00-22.el4_8.1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf@3.00-22.el4_8.1?arch=s390x\u0026epoch=1" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "product": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "product_id": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf-debuginfo@3.00-22.el4_8.1?arch=s390\u0026epoch=1" } } }, { "category": "product_version", "name": "xpdf-1:3.00-22.el4_8.1.s390", "product": { "name": "xpdf-1:3.00-22.el4_8.1.s390", "product_id": "xpdf-1:3.00-22.el4_8.1.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/xpdf@3.00-22.el4_8.1?arch=s390\u0026epoch=1" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:xpdf-1:3.00-22.el4_8.1.i386" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:xpdf-1:3.00-22.el4_8.1.ia64" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:xpdf-1:3.00-22.el4_8.1.ppc" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:xpdf-1:3.00-22.el4_8.1.s390" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:xpdf-1:3.00-22.el4_8.1.s390x" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.src as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:xpdf-1:3.00-22.el4_8.1.src" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.src", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:xpdf-1:3.00-22.el4_8.1.x86_64" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:xpdf-1:3.00-22.el4_8.1.i386" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:xpdf-1:3.00-22.el4_8.1.s390" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.src as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:xpdf-1:3.00-22.el4_8.1.src" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.src", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:xpdf-1:3.00-22.el4_8.1.i386" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:xpdf-1:3.00-22.el4_8.1.ia64" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:xpdf-1:3.00-22.el4_8.1.ppc" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:xpdf-1:3.00-22.el4_8.1.s390" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:xpdf-1:3.00-22.el4_8.1.s390x" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.src as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:xpdf-1:3.00-22.el4_8.1.src" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.src", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:xpdf-1:3.00-22.el4_8.1.x86_64" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:xpdf-1:3.00-22.el4_8.1.i386" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:xpdf-1:3.00-22.el4_8.1.ia64" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:xpdf-1:3.00-22.el4_8.1.ppc" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:xpdf-1:3.00-22.el4_8.1.s390" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:xpdf-1:3.00-22.el4_8.1.s390x" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.src as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:xpdf-1:3.00-22.el4_8.1.src" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.src", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-1:3.00-22.el4_8.1.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:xpdf-1:3.00-22.el4_8.1.x86_64" }, "product_reference": "xpdf-1:3.00-22.el4_8.1.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" }, "product_reference": "xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "relates_to_product_reference": "4WS" } ] }, "vulnerabilities": [ { "cve": "CVE-2009-0791", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-03-19T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "491840" } ], "notes": [ { "category": "description", "text": "Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops filter in CUPS 1.1.17, 1.1.22, and 1.3.7, GPdf, and kdegraphics KPDF, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file that triggers a heap-based buffer overflow, possibly related to (1) Decrypt.cxx, (2) FoFiTrueType.cxx, (3) gmem.c, (4) JBIG2Stream.cxx, and (5) PSOutputDev.cxx in pdftops/. NOTE: the JBIG2Stream.cxx vector may overlap CVE-2009-1179.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf: multiple integer overflows", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-0791" }, { "category": "external", "summary": "RHBZ#491840", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=491840" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-0791", "url": "https://www.cve.org/CVERecord?id=CVE-2009-0791" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-0791", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0791" } ], "release_date": "2009-05-19T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:34:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1501" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:A/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "xpdf: multiple integer overflows" }, { "acknowledgments": [ { "names": [ "Will Dormann" ], "organization": "CERT/CC" } ], "cve": "CVE-2009-1188", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-03-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "495907" } ], "notes": [ { "category": "description", "text": "Integer overflow in the JBIG2 decoding feature in the SplashBitmap::SplashBitmap function in SplashBitmap.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.10.6, as used in GPdf and kdegraphics KPDF, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: SplashBitmap integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1188" }, { "category": "external", "summary": "RHBZ#495907", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=495907" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1188", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1188" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1188", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1188" } ], "release_date": "2009-04-16T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:34:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1501" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: SplashBitmap integer overflow" }, { "acknowledgments": [ { "names": [ "Adam Zabrocki" ] } ], "cve": "CVE-2009-3604", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526911" } ], "notes": [ { "category": "description", "text": "The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document that triggers a NULL pointer dereference or a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: Splash:: drawImage integer overflow and missing allocation return value check", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3604" }, { "category": "external", "summary": "RHBZ#526911", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526911" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3604", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3604" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3604", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3604" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:34:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1501" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: Splash:: drawImage integer overflow and missing allocation return value check" }, { "cve": "CVE-2009-3606", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-06-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526877" } ], "notes": [ { "category": "description", "text": "Integer overflow in the PSOutputDev::doImageL1Sep function in Xpdf before 3.02pl4, and Poppler 0.x, as used in kdegraphics KPDF, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: PSOutputDev:: doImageL1Sep integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3606" }, { "category": "external", "summary": "RHBZ#526877", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526877" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3606", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3606" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3606", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3606" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:34:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1501" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.7, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "xpdf/poppler: PSOutputDev:: doImageL1Sep integer overflow" }, { "acknowledgments": [ { "names": [ "Chris Rohlf" ] } ], "cve": "CVE-2009-3608", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-09-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526637" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: integer overflow in ObjectStream::ObjectStream (oCERT-2009-016)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3608" }, { "category": "external", "summary": "RHBZ#526637", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526637" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3608", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3608" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3608", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3608" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:34:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1501" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "xpdf/poppler: integer overflow in ObjectStream::ObjectStream (oCERT-2009-016)" }, { "cve": "CVE-2009-3609", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2009-06-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "526893" } ], "notes": [ { "category": "description", "text": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.", "title": "Vulnerability description" }, { "category": "summary", "text": "xpdf/poppler: ImageStream:: ImageStream integer overflow", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-3609" }, { "category": "external", "summary": "RHBZ#526893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-3609", "url": "https://www.cve.org/CVERecord?id=CVE-2009-3609" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609" } ], "release_date": "2009-10-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-10-15T08:34:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1501" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "4AS:xpdf-1:3.00-22.el4_8.1.i386", "4AS:xpdf-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-1:3.00-22.el4_8.1.s390", "4AS:xpdf-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-1:3.00-22.el4_8.1.src", "4AS:xpdf-1:3.00-22.el4_8.1.x86_64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4AS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-1:3.00-22.el4_8.1.src", "4Desktop:xpdf-1:3.00-22.el4_8.1.x86_64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4Desktop:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-1:3.00-22.el4_8.1.i386", "4ES:xpdf-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-1:3.00-22.el4_8.1.s390", "4ES:xpdf-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-1:3.00-22.el4_8.1.src", "4ES:xpdf-1:3.00-22.el4_8.1.x86_64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4ES:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-1:3.00-22.el4_8.1.i386", "4WS:xpdf-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-1:3.00-22.el4_8.1.s390", "4WS:xpdf-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-1:3.00-22.el4_8.1.src", "4WS:xpdf-1:3.00-22.el4_8.1.x86_64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.i386", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ia64", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.ppc", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.s390x", "4WS:xpdf-debuginfo-1:3.00-22.el4_8.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "xpdf/poppler: ImageStream:: ImageStream integer overflow" } ] }
gsd-2009-3609
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2009-3609", "description": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.", "id": "GSD-2009-3609", "references": [ "https://www.suse.com/security/cve/CVE-2009-3609.html", "https://www.debian.org/security/2010/dsa-2050", "https://www.debian.org/security/2010/dsa-2028", "https://access.redhat.com/errata/RHSA-2010:0755", "https://access.redhat.com/errata/RHSA-2010:0401", "https://access.redhat.com/errata/RHSA-2010:0400", "https://access.redhat.com/errata/RHSA-2010:0399", "https://access.redhat.com/errata/RHSA-2009:1513", "https://access.redhat.com/errata/RHSA-2009:1512", "https://access.redhat.com/errata/RHSA-2009:1504", "https://access.redhat.com/errata/RHSA-2009:1503", "https://access.redhat.com/errata/RHSA-2009:1502", "https://access.redhat.com/errata/RHSA-2009:1501", "https://access.redhat.com/errata/RHSA-2009:1500", "https://linux.oracle.com/cve/CVE-2009-3609.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2009-3609" ], "details": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.", "id": "GSD-2009-3609", "modified": "2023-12-13T01:19:49.486902Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2009-3609", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_affected": "=", "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:175", "refsource": "MISC", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:175" }, { "name": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035340.html", "refsource": "MISC", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035340.html" }, { "name": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035399.html", "refsource": "MISC", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035399.html" }, { "name": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035408.html", "refsource": "MISC", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035408.html" }, { "name": "http://secunia.com/advisories/37028", "refsource": "MISC", "url": "http://secunia.com/advisories/37028" }, { "name": "http://secunia.com/advisories/37037", "refsource": "MISC", "url": "http://secunia.com/advisories/37037" }, { "name": "http://secunia.com/advisories/37043", "refsource": "MISC", "url": "http://secunia.com/advisories/37043" }, { "name": "http://secunia.com/advisories/37077", "refsource": "MISC", "url": "http://secunia.com/advisories/37077" }, { "name": "http://secunia.com/advisories/37079", "refsource": "MISC", "url": "http://secunia.com/advisories/37079" }, { "name": "http://secunia.com/advisories/39327", "refsource": "MISC", "url": "http://secunia.com/advisories/39327" }, { "name": "http://secunia.com/advisories/39938", "refsource": "MISC", "url": "http://secunia.com/advisories/39938" }, { "name": "http://www.debian.org/security/2010/dsa-2028", "refsource": "MISC", "url": "http://www.debian.org/security/2010/dsa-2028" }, { "name": "http://www.debian.org/security/2010/dsa-2050", "refsource": "MISC", "url": "http://www.debian.org/security/2010/dsa-2050" }, { "name": "http://www.vupen.com/english/advisories/2009/2928", "refsource": "MISC", "url": "http://www.vupen.com/english/advisories/2009/2928" }, { "name": "http://www.vupen.com/english/advisories/2010/0802", "refsource": "MISC", "url": "http://www.vupen.com/english/advisories/2010/0802" }, { "name": "http://www.vupen.com/english/advisories/2010/1220", "refsource": "MISC", "url": "http://www.vupen.com/english/advisories/2010/1220" }, { "name": "https://rhn.redhat.com/errata/RHSA-2009-1501.html", "refsource": "MISC", "url": "https://rhn.redhat.com/errata/RHSA-2009-1501.html" }, { "name": "https://rhn.redhat.com/errata/RHSA-2009-1502.html", "refsource": "MISC", "url": "https://rhn.redhat.com/errata/RHSA-2009-1502.html" }, { "name": "https://rhn.redhat.com/errata/RHSA-2009-1503.html", "refsource": "MISC", "url": "https://rhn.redhat.com/errata/RHSA-2009-1503.html" }, { "name": "https://rhn.redhat.com/errata/RHSA-2009-1512.html", "refsource": "MISC", "url": "https://rhn.redhat.com/errata/RHSA-2009-1512.html" }, { "name": "ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl4.patch", "refsource": "MISC", "url": "ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl4.patch" }, { "name": "http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html", "refsource": "MISC", "url": "http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html" }, { "name": "http://poppler.freedesktop.org/", "refsource": "MISC", "url": "http://poppler.freedesktop.org/" }, { "name": "http://secunia.com/advisories/37034", "refsource": "MISC", "url": "http://secunia.com/advisories/37034" }, { "name": "http://secunia.com/advisories/37054", "refsource": "MISC", "url": "http://secunia.com/advisories/37054" }, { "name": "http://secunia.com/advisories/37114", "refsource": "MISC", "url": "http://secunia.com/advisories/37114" }, { "name": "http://secunia.com/advisories/37159", "refsource": "MISC", "url": "http://secunia.com/advisories/37159" }, { "name": "http://securitytracker.com/id?1023029", "refsource": "MISC", "url": "http://securitytracker.com/id?1023029" }, { "name": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-274030-1", "refsource": "MISC", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-274030-1" }, { "name": "http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021706.1-1", "refsource": "MISC", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021706.1-1" }, { "name": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:287", "refsource": "MISC", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:287" }, { "name": "http://www.securityfocus.com/bid/36703", "refsource": "MISC", "url": "http://www.securityfocus.com/bid/36703" }, { "name": "http://www.ubuntu.com/usn/USN-850-1", "refsource": "MISC", "url": "http://www.ubuntu.com/usn/USN-850-1" }, { "name": "http://www.ubuntu.com/usn/USN-850-3", "refsource": "MISC", "url": "http://www.ubuntu.com/usn/USN-850-3" }, { "name": "http://www.vupen.com/english/advisories/2009/2924", "refsource": "MISC", "url": "http://www.vupen.com/english/advisories/2009/2924" }, { "name": "http://www.vupen.com/english/advisories/2009/2925", "refsource": "MISC", "url": "http://www.vupen.com/english/advisories/2009/2925" }, { "name": "https://rhn.redhat.com/errata/RHSA-2009-1504.html", "refsource": "MISC", "url": "https://rhn.redhat.com/errata/RHSA-2009-1504.html" }, { "name": "https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00750.html", "refsource": "MISC", "url": "https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00750.html" }, { "name": "https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00784.html", "refsource": "MISC", "url": "https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00784.html" }, { "name": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:334", "refsource": "MISC", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:334" }, { "name": "http://secunia.com/advisories/37051", "refsource": "MISC", "url": "http://secunia.com/advisories/37051" }, { "name": "http://secunia.com/advisories/37061", "refsource": "MISC", "url": "http://secunia.com/advisories/37061" }, { "name": "http://www.vupen.com/english/advisories/2009/2926", "refsource": "MISC", "url": "http://www.vupen.com/english/advisories/2009/2926" }, { "name": "https://rhn.redhat.com/errata/RHSA-2009-1513.html", "refsource": "MISC", "url": "https://rhn.redhat.com/errata/RHSA-2009-1513.html" }, { "name": "http://secunia.com/advisories/37023", "refsource": "MISC", "url": "http://secunia.com/advisories/37023" }, { "name": "http://www.redhat.com/support/errata/RHSA-2010-0755.html", "refsource": "MISC", "url": "http://www.redhat.com/support/errata/RHSA-2010-0755.html" }, { "name": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53800", "refsource": "MISC", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53800" }, { "name": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11043", "refsource": "MISC", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11043" }, { "name": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8134", "refsource": "MISC", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8134" }, { "name": "https://rhn.redhat.com/errata/RHSA-2009-1500.html", "refsource": "MISC", "url": "https://rhn.redhat.com/errata/RHSA-2009-1500.html" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=526893", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:foolabs:xpdf:3.02pl1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:foolabs:xpdf:3.02pl2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:foolabs:xpdf:3.02pl3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:glyphandcog:xpdfreader:3.00:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:glyphandcog:xpdfreader:3.01:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:glyphandcog:xpdfreader:3.02:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "0.12.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.1.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.3.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.3.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.4.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.4.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.4.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.4.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.4.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.5.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.5.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.5.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.5.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.5.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.6.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.6.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.6.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.6.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.7.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.7.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.7.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.8.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.8.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.8.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.8.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.8.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.8.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.8.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.9.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.9.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.9.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.9.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.10.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.10.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.10.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.10.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.10.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.10.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.10.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.10.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.11.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.11.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.11.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:poppler:poppler:0.11.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:glyph_and_cog:pdftops:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:a:gnome:gpdf:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false }, { "cpe23Uri": "cpe:2.3:a:kde:kpdf:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false } ], "operator": "OR" } ], "cpe_match": [], "operator": "AND" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2009-3609" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-189" } ] } ] }, "references": { "reference_data": [ { "name": "RHSA-2009:1504", "refsource": "REDHAT", "tags": [], "url": "https://rhn.redhat.com/errata/RHSA-2009-1504.html" }, { "name": "ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl4.patch", "refsource": "CONFIRM", "tags": [ "Exploit" ], "url": "ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl4.patch" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=526893", "refsource": "CONFIRM", "tags": [ "Exploit", "Patch" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "name": "ADV-2009-2924", "refsource": "VUPEN", "tags": [ "Patch", "Vendor Advisory" ], "url": "http://www.vupen.com/english/advisories/2009/2924" }, { "name": "36703", "refsource": "BID", "tags": [ "Exploit", "Patch" ], "url": "http://www.securityfocus.com/bid/36703" }, { "name": "37051", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/37051" }, { "name": "RHSA-2009:1500", "refsource": "REDHAT", "tags": [], "url": "https://rhn.redhat.com/errata/RHSA-2009-1500.html" }, { "name": "37077", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/37077" }, { "name": "37054", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/37054" }, { "name": "1023029", "refsource": "SECTRACK", "tags": [], "url": "http://securitytracker.com/id?1023029" }, { "name": "ADV-2009-2928", "refsource": "VUPEN", "tags": [ "Vendor Advisory" ], "url": "http://www.vupen.com/english/advisories/2009/2928" }, { "name": "37043", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/37043" }, { "name": "RHSA-2009:1513", "refsource": "REDHAT", "tags": [], "url": "https://rhn.redhat.com/errata/RHSA-2009-1513.html" }, { "name": "ADV-2009-2926", "refsource": "VUPEN", "tags": [ "Vendor Advisory" ], "url": "http://www.vupen.com/english/advisories/2009/2926" }, { "name": "37037", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/37037" }, { "name": "ADV-2009-2925", "refsource": "VUPEN", "tags": [ "Vendor Advisory" ], "url": "http://www.vupen.com/english/advisories/2009/2925" }, { "name": "37028", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/37028" }, { "name": "RHSA-2009:1512", "refsource": "REDHAT", "tags": [], "url": "https://rhn.redhat.com/errata/RHSA-2009-1512.html" }, { "name": "RHSA-2009:1501", "refsource": "REDHAT", "tags": [], "url": "https://rhn.redhat.com/errata/RHSA-2009-1501.html" }, { "name": "RHSA-2009:1503", "refsource": "REDHAT", "tags": [], "url": "https://rhn.redhat.com/errata/RHSA-2009-1503.html" }, { "name": "37034", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/37034" }, { "name": "37061", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/37061" }, { "name": "RHSA-2009:1502", "refsource": "REDHAT", "tags": [], "url": "https://rhn.redhat.com/errata/RHSA-2009-1502.html" }, { "name": "37023", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/37023" }, { "name": "http://poppler.freedesktop.org/", "refsource": "CONFIRM", "tags": [ "Patch", "Vendor Advisory" ], "url": "http://poppler.freedesktop.org/" }, { "name": "37079", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/37079" }, { "name": "MDVSA-2009:287", "refsource": "MANDRIVA", "tags": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:287" }, { "name": "FEDORA-2009-10845", "refsource": "FEDORA", "tags": [], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00784.html" }, { "name": "37159", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/37159" }, { "name": "FEDORA-2009-10823", "refsource": "FEDORA", "tags": [], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00750.html" }, { "name": "37114", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/37114" }, { "name": "USN-850-1", "refsource": "UBUNTU", "tags": [], "url": "http://www.ubuntu.com/usn/USN-850-1" }, { "name": "SUSE-SR:2009:018", "refsource": "SUSE", "tags": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html" }, { "name": "274030", "refsource": "SUNALERT", "tags": [], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-274030-1" }, { "name": "USN-850-3", "refsource": "UBUNTU", "tags": [], "url": "http://www.ubuntu.com/usn/USN-850-3" }, { "name": "MDVSA-2009:334", "refsource": "MANDRIVA", "tags": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:334" }, { "name": "FEDORA-2010-1377", "refsource": "FEDORA", "tags": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035408.html" }, { "name": "FEDORA-2010-1842", "refsource": "FEDORA", "tags": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035399.html" }, { "name": "FEDORA-2010-1805", "refsource": "FEDORA", "tags": [], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035340.html" }, { "name": "ADV-2010-0802", "refsource": "VUPEN", "tags": [], "url": "http://www.vupen.com/english/advisories/2010/0802" }, { "name": "39327", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/39327" }, { "name": "DSA-2028", "refsource": "DEBIAN", "tags": [], "url": "http://www.debian.org/security/2010/dsa-2028" }, { "name": "1021706", "refsource": "SUNALERT", "tags": [], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021706.1-1" }, { "name": "ADV-2010-1220", "refsource": "VUPEN", "tags": [], "url": "http://www.vupen.com/english/advisories/2010/1220" }, { "name": "39938", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/39938" }, { "name": "DSA-2050", "refsource": "DEBIAN", "tags": [], "url": "http://www.debian.org/security/2010/dsa-2050" }, { "name": "RHSA-2010:0755", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2010-0755.html" }, { "name": "MDVSA-2011:175", "refsource": "MANDRIVA", "tags": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:175" }, { "name": "xpdf-imagestream-dos(53800)", "refsource": "XF", "tags": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53800" }, { "name": "oval:org.mitre.oval:def:8134", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8134" }, { "name": "oval:org.mitre.oval:def:11043", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11043" } ] } }, "impact": { "baseMetricV2": { "acInsufInfo": false, "cvssV2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false } }, "lastModifiedDate": "2023-02-13T02:20Z", "publishedDate": "2009-10-21T17:30Z" } } }
ghsa-hr5j-672h-fcgc
Vulnerability from github
Published
2022-05-03 03:20
Modified
2022-05-03 03:20
Details
Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.
{ "affected": [], "aliases": [ "CVE-2009-3609" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2009-10-21T17:30:00Z", "severity": "MODERATE" }, "details": "Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.", "id": "GHSA-hr5j-672h-fcgc", "modified": "2022-05-03T03:20:31Z", "published": "2022-05-03T03:20:31Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-3609" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=526893" }, { "type": "WEB", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/53800" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11043" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8134" }, { "type": "WEB", "url": "https://rhn.redhat.com/errata/RHSA-2009-1500.html" }, { "type": "WEB", "url": "https://rhn.redhat.com/errata/RHSA-2009-1501.html" }, { "type": "WEB", "url": "https://rhn.redhat.com/errata/RHSA-2009-1502.html" }, { "type": "WEB", "url": "https://rhn.redhat.com/errata/RHSA-2009-1503.html" }, { "type": "WEB", "url": "https://rhn.redhat.com/errata/RHSA-2009-1504.html" }, { "type": "WEB", "url": "https://rhn.redhat.com/errata/RHSA-2009-1512.html" }, { "type": "WEB", "url": "https://rhn.redhat.com/errata/RHSA-2009-1513.html" }, { "type": "WEB", "url": "https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00750.html" }, { "type": "WEB", "url": "https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00784.html" }, { "type": "WEB", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035340.html" }, { "type": "WEB", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035399.html" }, { "type": "WEB", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035408.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html" }, { "type": "WEB", "url": "http://poppler.freedesktop.org" }, { "type": "WEB", "url": "http://secunia.com/advisories/37023" }, { "type": "WEB", "url": "http://secunia.com/advisories/37028" }, { "type": "WEB", "url": "http://secunia.com/advisories/37034" }, { "type": "WEB", "url": "http://secunia.com/advisories/37037" }, { "type": "WEB", "url": "http://secunia.com/advisories/37043" }, { "type": "WEB", "url": "http://secunia.com/advisories/37051" }, { "type": "WEB", "url": "http://secunia.com/advisories/37054" }, { "type": "WEB", "url": "http://secunia.com/advisories/37061" }, { "type": "WEB", "url": "http://secunia.com/advisories/37077" }, { "type": "WEB", "url": "http://secunia.com/advisories/37079" }, { "type": "WEB", "url": "http://secunia.com/advisories/37114" }, { "type": "WEB", "url": "http://secunia.com/advisories/37159" }, { "type": "WEB", "url": "http://secunia.com/advisories/39327" }, { "type": "WEB", "url": "http://secunia.com/advisories/39938" }, { "type": "WEB", "url": "http://securitytracker.com/id?1023029" }, { "type": "WEB", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-274030-1" }, { "type": "WEB", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021706.1-1" }, { "type": "WEB", "url": "http://www.debian.org/security/2010/dsa-2028" }, { "type": "WEB", "url": "http://www.debian.org/security/2010/dsa-2050" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:287" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:334" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:175" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2010-0755.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/36703" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/USN-850-1" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/USN-850-3" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2009/2924" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2009/2925" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2009/2926" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2009/2928" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2010/0802" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2010/1220" } ], "schema_version": "1.4.0", "severity": [] }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.