CVE Database


Impact: Important
Public: 2009-10-15
Bugzilla: 526924: CVE-2009-3607 poppler: create_surface_from_thumbnail_data integer overflow


The MITRE CVE dictionary describes this issue as:

Integer overflow in the create_surface_from_thumbnail_data function in glib/ in Poppler 0.x allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.

Find out more about CVE-2009-3607 from the MITRE CVE dictionary and NIST NVD.


Not vulnerable. This issue did not affect the version of poppler as shipped with Red Hat Enterprise Linux 5.

Red Hat security errata

Platform Errata Release Date

External References

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.