Your message dated Wed, 7 Dec 2005 11:18:48 +1100
with message-id <[EMAIL PROTECTED]>
and subject line [EMAIL PROTECTED]: Bug#322462: marked as done (CAN-2005-2097:
DoS through PDFs with crafted loca tables)]
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--------------------------------------
Received: (at submit) by bugs.debian.org; 6 Dec 2005 19:43:00 +0000
>From [EMAIL PROTECTED] Tue Dec 06 11:43:00 2005
Return-path: <[EMAIL PROTECTED]>
Received: from talus.maths.usyd.edu.au ([129.78.68.1])
by spohr.debian.org with esmtp (Exim 4.50)
id 1EjiiJ-0008LH-Vt
for [EMAIL PROTECTED]; Tue, 06 Dec 2005 11:43:00 -0800
Received: from [EMAIL PROTECTED] by talus.maths.usyd.edu.au (8.12.3/8.1)
id jB6Jgt3x024567 for [EMAIL PROTECTED]; Wed, 7 Dec 2005 06:42:55 +1100
Received: from savona.maths.usyd.edu.au ([EMAIL PROTECTED]) [129.78.69.138]
by siv.maths.usyd.edu.au via smtpdoor V18.6
id 24566 for [EMAIL PROTECTED]; Wed, 7 Dec 2005 06:42:55 +1100
Message-Id: <[EMAIL PROTECTED]>
Received: from [EMAIL PROTECTED] by savona.maths.usyd.edu.au (8.13.4/8.3/Submit)
id jB6Jgtg1030096; Wed, 7 Dec 2005 06:42:55 +1100
X-Authentication-Warning: savona.maths.usyd.edu.au: psz set sender to [EMAIL
PROTECTED] using -f
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: Paul Szabo <[EMAIL PROTECTED]>
To: Debian Bug Tracking System <[EMAIL PROTECTED]>
Subject: xpdf-reader: security issues by iDefense
X-Mailer: reportbug 3.8
Date: Wed, 07 Dec 2005 06:42:55 +1100
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level:
X-Spam-Status: No, hits=-7.3 required=4.0 tests=BAYES_00,HAS_PACKAGE,
MSGID_FROM_MTA_HEADER autolearn=no
version=2.60-bugs.debian.org_2005_01_02
Package: xpdf-reader
Version: 3.00-13
Severity: critical
Justification: causes serious data loss
Arbitrary code execution (with privileges as user of package) issues
reported by iDefense:
Multiple Vendor xpdf DCTStream Baseline Heap Overflow Vulnerability
Multiple Vendor xpdf DCTStream Progressive Heap Overflow
Multiple Vendor xpdf StreamPredictor Heap Overflow Vulnerability
Multiple Vendor xpdf JPX Stream Reader Heap Overflow Vulnerability
http://www.idefense.com/application/poi/display?id=342
http://www.idefense.com/application/poi/display?id=343
http://www.idefense.com/application/poi/display?id=344
http://www.idefense.com/application/poi/display?id=345
(Debian, both woody and sarge, is specifically mentioned as vulnerable.)
Reported also on public mailing lists, see
http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/
http://www.securityfocus.com/archive/1
Upstream/vendor patches are apparently available.
Cheers,
Paul Szabo [EMAIL PROTECTED] http://www.maths.usyd.edu.au/u/psz/
School of Mathematics and Statistics University of Sydney Australia
-- System Information:
Debian Release: 3.1
Architecture: i386 (i686)
Kernel: Linux 2.6.8-spm0.5
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Versions of packages xpdf-reader depends on:
ii gsfonts 8.14+v8.11+urw-0.2 Fonts for the Ghostscript interpre
ii lesstif2 1:0.93.94-11.4 OSF/Motif 2.1 implementation relea
ii libc6 2.3.2.ds1-22 GNU C Library: Shared libraries an
ii libfreetype6 2.1.7-2.4 FreeType 2 font engine, shared lib
ii libgcc1 1:3.4.3-13 GCC support library
ii libice6 4.3.0.dfsg.1-14sarge1 Inter-Client Exchange library
ii libpaper1 1.1.14-3 Library for handling paper charact
ii libsm6 4.3.0.dfsg.1-14sarge1 X Window System Session Management
ii libstdc++5 1:3.3.5-13 The GNU Standard C++ Library v3
ii libt1-5 5.0.2-3 Type 1 font rasterizer library - r
ii libx11-6 4.3.0.dfsg.1-14sarge1 X Window System protocol client li
ii libxext6 4.3.0.dfsg.1-14sarge1 X Window System miscellaneous exte
ii libxp6 4.3.0.dfsg.1-14sarge1 X Window System printing extension
ii libxpm4 4.3.0.dfsg.1-14sarge1 X pixmap library
ii libxt6 4.3.0.dfsg.1-14sarge1 X Toolkit Intrinsics
ii xlibs 4.3.0.dfsg.1-14sarge1 X Keyboard Extension (XKB) configu
ii xpdf-common 3.00-13 Portable Document Format (PDF) sui
ii zlib1g 1:1.2.2-4.sarge.2 compression library - runtime
-- no debconf information
---------------------------------------
Received: (at 342281-done) by bugs.debian.org; 7 Dec 2005 00:19:23 +0000
>From [EMAIL PROTECTED] Tue Dec 06 16:19:23 2005
Return-path: <[EMAIL PROTECTED]>
Received: from risingsoftware01.propagation.net ([66.221.33.65]
ident=Debian-exim)
by spohr.debian.org with esmtp (Exim 4.50)
id 1Ejn1n-0003Vh-7V
for [EMAIL PROTECTED]; Tue, 06 Dec 2005 16:19:23 -0800
Received: from c220-237-181-46.eburwd3.vic.optusnet.com.au ([220.237.181.46]
helo=noddy.cloud.net.au)
by risingsoftware01.propagation.net with esmtpsa
(TLS-1.0:RSA_AES_256_CBC_SHA:32)
(Exim 4.50)
id 1Ejnyb-0008Ad-6O
for [EMAIL PROTECTED]; Tue, 06 Dec 2005 19:20:09 -0600
Received: from hamish by noddy.cloud.net.au with local (Exim 4.54)
id 1Ejn1E-0006pE-Id
for [EMAIL PROTECTED]; Wed, 07 Dec 2005 11:18:48 +1100
Date: Wed, 7 Dec 2005 11:18:48 +1100
From: Hamish Moffatt <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: [EMAIL PROTECTED]: Bug#322462: marked as done (CAN-2005-2097: DoS
through PDFs with crafted loca tables)]
Message-ID: <[EMAIL PROTECTED]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.5.11
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level:
X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER
autolearn=no version=2.60-bugs.debian.org_2005_01_02
Version: 3.01-3
Fixed for unstable/etch. However I closed the wrong bug report in the
changelog :(
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 6 Dec 2005 23:05:10 +0000
Source: xpdf
Binary: xpdf-utils xpdf xpdf-reader xpdf-common
Architecture: source i386 all
Version: 3.01-3
Distribution: unstable
Urgency: high
Maintainer: Hamish Moffatt <[EMAIL PROTECTED]>
Changed-By: Hamish Moffatt <[EMAIL PROTECTED]>
Description:
xpdf - Portable Document Format (PDF) suite
xpdf-common - Portable Document Format (PDF) suite -- common files
xpdf-reader - Portable Document Format (PDF) suite -- viewer for X11
xpdf-utils - Portable Document Format (PDF) suite -- utilities
Closes: 322462
Changes:
xpdf (3.01-3) unstable; urgency=high
.
* SECURITY UPDATE: fix several potential buffer overflows:
DCTStream Baseline Heap Overflow, DCTStream Progressive Heap Overflow,
StreamPredictor Heap Overflow, JPX Stream Reader Heap Overflow
(closes: #322462) (21_security.dpatch)
* References: CAN-2005-3193
Files:
8ef3747a62e6fadd7ca4c928b8848b59 954 text optional xpdf_3.01-3.dsc
ca23e3dc4aaed5e61a2a810a74d6e9b4 29839 text optional xpdf_3.01-3.diff.gz
6fe6881f9846605455a8ebb32e31d161 1276 text optional xpdf_3.01-3_all.deb
b56534744ea8062c3cfc3d36e635fb21 60048 text optional xpdf-common_3.01-3_all.deb
ab2d9d05aec8a44d84e7e7f47845c70f 760040 text optional
xpdf-reader_3.01-3_i386.deb
ae35ce4c0a4d73d4213f204a4169977b 1385722 text optional
xpdf-utils_3.01-3_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
iQCVAwUBQ5YaZNiYIdPvprnVAQIVlQP6AisFzXJuFRhhxFfi3J4fpfVH/PhXWpWm
t9AbVv3kFiwlIqiZIefFM5zOhPQMX+BVNrmZAgessL/pUrvcfOe2UKiyi3rb790J
5MdsLUYzVQpQeABjOOXXKKBo7bG6HeTetfHaIwBfI6LJgdX7p3ljtSgX9gBnwCsJ
li42PNczWG4=
=PA2v
-----END PGP SIGNATURE-----
--
Hamish Moffatt VK3SB <[EMAIL PROTECTED]> <[EMAIL PROTECTED]>
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
