KDE • Support • Security Advisories
DONATE (Why?)
paypal

XPDF Integer Overflow

$Date: 2005-10-12 17:17:55 +0000 (Wed, 12 Oct 2005) $

KOffice 1.3 (including betas) to 1.3.4 have an integer overflow vulnerability in KWord's PDF import filter.

References

How to fix source code?

KOffice 1.3 (including betas) to 1.3.3

A patch for the source package is available. (Patch updated the 2004-10-30 16:15 UTC)
(MD5 sum: b681bc6746c31f3410f20315b0075b25 xpdf_security_integer_overflow.diff )

The patch applies to the directory koffice/filters/kword/pdf/xpdf/xpdf .

To patch, do: (please adjust paths)
cd koffice/filters/kword/pdf/xpdf/xpdf
patch -p0 < xpdf_security_integer_overflow.diff

KOffice 1.3.4

KOffice 1.3.4 has an integer overflow vulnerability fix in KWord's PDF import filter which is weak against compiler optimization.

A patch for the source package is available.

The patch applies to the directory koffice/filters/kword/pdf/xpdf/xpdf .

To patch, do: (please adjust paths)
cd koffice/filters/kword/pdf/xpdf/xpdf
patch -p0 < koffice_1_3_4_xpdf_security_integer_overflow.diff

See Also

Global navigation links