Security Advisory Important: xpdf security update

Advisory: RHSA-2009:1500-1
Type: Security Advisory
Severity: Important
Issued on: 2009-10-15
Last updated on: 2009-10-15
Affected Products: Red Hat Desktop (v. 3)
Red Hat Enterprise Linux AS (v. 3)
Red Hat Enterprise Linux ES (v. 3)
Red Hat Enterprise Linux WS (v. 3)
OVAL: com.redhat.rhsa-20091500.xml
CVEs (cve.mitre.org): CVE-2009-0791
CVE-2009-3604
CVE-2009-3606
CVE-2009-3609

Details

An updated xpdf package that fixes multiple security issues is now
available for Red Hat Enterprise Linux 3.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

Xpdf is an X Window System based viewer for Portable Document Format (PDF)
files.

Multiple integer overflow flaws were found in Xpdf. An attacker could
create a malicious PDF file that would cause Xpdf to crash or, potentially,
execute arbitrary code when opened. (CVE-2009-0791, CVE-2009-3604,
CVE-2009-3606, CVE-2009-3609)

Red Hat would like to thank Adam Zabrocki for reporting the CVE-2009-3604
issue.

Users are advised to upgrade to this updated package, which contains a
backported patch to correct these issues.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Updated packages

Red Hat Desktop (v. 3)
SRPMS:
xpdf-2.02-17.el3.src.rpm     7bac68f02a552f04a07e50ee50a7a55a
 
IA-32:
xpdf-2.02-17.el3.i386.rpm     7b875f17654761ae3ca1a0eb9edd6c48
 
x86_64:
xpdf-2.02-17.el3.x86_64.rpm     62494f668e4835086d78df19626cd5e0
 
Red Hat Enterprise Linux AS (v. 3)
SRPMS:
xpdf-2.02-17.el3.src.rpm     7bac68f02a552f04a07e50ee50a7a55a
 
IA-32:
xpdf-2.02-17.el3.i386.rpm     7b875f17654761ae3ca1a0eb9edd6c48
 
IA-64:
xpdf-2.02-17.el3.ia64.rpm     13bfb72fe79106c983296039d5dce0e0
 
PPC:
xpdf-2.02-17.el3.ppc.rpm     c55d0508601c4e98b688141864f8fdc5
 
s390:
xpdf-2.02-17.el3.s390.rpm     e4d3dbd15aa288b86003c795aa44c00e
 
s390x:
xpdf-2.02-17.el3.s390x.rpm     fe4047f68b4f2b76721038fc690d2d0d
 
x86_64:
xpdf-2.02-17.el3.x86_64.rpm     62494f668e4835086d78df19626cd5e0
 
Red Hat Enterprise Linux ES (v. 3)
SRPMS:
xpdf-2.02-17.el3.src.rpm     7bac68f02a552f04a07e50ee50a7a55a
 
IA-32:
xpdf-2.02-17.el3.i386.rpm     7b875f17654761ae3ca1a0eb9edd6c48
 
IA-64:
xpdf-2.02-17.el3.ia64.rpm     13bfb72fe79106c983296039d5dce0e0
 
x86_64:
xpdf-2.02-17.el3.x86_64.rpm     62494f668e4835086d78df19626cd5e0
 
Red Hat Enterprise Linux WS (v. 3)
SRPMS:
xpdf-2.02-17.el3.src.rpm     7bac68f02a552f04a07e50ee50a7a55a
 
IA-32:
xpdf-2.02-17.el3.i386.rpm     7b875f17654761ae3ca1a0eb9edd6c48
 
IA-64:
xpdf-2.02-17.el3.ia64.rpm     13bfb72fe79106c983296039d5dce0e0
 
x86_64:
xpdf-2.02-17.el3.x86_64.rpm     62494f668e4835086d78df19626cd5e0
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

491840 - CVE-2009-0791 xpdf: multiple integer overflows
526877 - CVE-2009-3606 xpdf/poppler: PSOutputDev::doImageL1Sep integer overflow
526893 - CVE-2009-3609 xpdf/poppler: ImageStream::ImageStream integer overflow
526911 - CVE-2009-3604 xpdf/poppler: Splash::drawImage integer overflow and missing allocation return value check


References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0791
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3604
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3606
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3609
http://www.redhat.com/security/updates/classification/#important

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/