You are here

CVE-2004-1125

Vincent (CVE) Danen's picture
Buffer overflow in the Gfx::doImage function in Gfx.cc for xpdf 3.00, and other products that share code such as tetex-bin and kpdf in KDE 3.2.x to 3.2.3 and 3.3.x to 3.3.2, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PDF file that causes the boundaries of a maskColors array to be exceeded.

Details Source

Mitre

Public Date

2004-12-21 00:00:00

Impact

Moderate

CVSS Status

draft

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 (xpdf) RHSA-2005:034 2005-02-15
Red Hat Enterprise Linux 4 (kdegraphics) RHSA-2005:066 2005-02-15
Red Hat Enterprise Linux 4 (tetex) RHSA-2005:026 2005-03-16
Red Hat Enterprise Linux 4 (gpdf) RHSA-2005:057 2005-02-15
Red Hat Enterprise Linux 2.1 (tetex) RHSA-2005:354 2005-04-01
Red Hat Enterprise Linux 3 (cups) RHSA-2005:013 2005-01-12
Red Hat Enterprise Linux 4 (cups) RHSA-2005:053 2005-02-15
Red Hat Enterprise Linux 3 (xpdf) RHSA-2005:018 2005-01-12
Red Hat Enterprise Linux 3 (tetex) RHSA-2005:354 2005-04-01