 |
|
|
|
t1lib / xpdf library multiple security vulnerabilities
updated since 29.03.2011 | | Published: |  | 16.01.2012 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 11541 | | Type: |  | remote | | Level: |  | 5/10 | | Description: |  | Multiple memory corruptions. |
| Affected: |  | T1LIB : t1lib 5.1 | | | | XPDF : xpdf 3.02 | | CVE: |  | CVE-2011-1554 (Off-by-one error in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6 and other products, allows remote attackers to cause a denial of service (application crash) via a PDF document containing a crafted Type 1 font that triggers an invalid memory read, integer overflow, and invalid pointer dereference, a different vulnerability than CVE-2011-0764.) | | | | CVE-2011-1553 (Use-after-free vulnerability in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6 and other products, allows remote attackers to cause a denial of service (application crash) via a PDF document containing a crafted Type 1 font that triggers an invalid memory write, a different vulnerability than CVE-2011-0764.) | | | | CVE-2011-1552 (t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6 and other products, reads from invalid memory locations, which allows remote attackers to cause a denial of service (application crash) via a crafted Type 1 font in a PDF document, a different vulnerability than CVE-2011-0764.) | | | | CVE-2011-0764 (t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6 and other products, uses an invalid pointer in conjunction with a dereference operation, which allows remote attackers to execute arbitrary code via a crafted Type 1 font in a PDF document, as demonstrated by testz.2184122398.pdf.) | | | | CVE-2011-0433 |
|
|
|
|
|
|
|
|
