Language Selection

English French German Italian Portuguese Spanish

Vulnerabilities in several PDF applications

Filed under
Security

Security holes in numerous PDF applications allow attackers to infect systems with malware.

Developers have also released a patch for the free Xpdf PDF reader that fixes four security problems in version 3.02. Exploits for a buffer overflow and a null pointer dereference hole are already in circulation. Problems in Xpdf usually cause a whole string of vulnerabilities in other applications that are based on its code, for example poppler, CUPS , Gpdf and KPDF.

In CUPS, the holes were reportedly closed in the official version 1.4.1.

Rest Here




More in Tux Machines

Server: NASA, Kubernetes at GitHub, and Docker in Mainframes

  • NASA Launches Supercomputer Servers into Space
    During that time, it will run a series of supercomputing benchmarks, including High Performance Linpack, the High Performance Conjugate Gradients (HPCG) suite, and the NASA-derived NAS parallel benchmarks. Its operation will be compared to HPE servers of the same construction back on Earth. The idea is to make sure that the ISS-based system is able to deal with the realities of cosmic radiation, solar flares, unstable electrical power, and wide variations in temperature.
  • Kubernetes at GitHub
    Over the last year, GitHub has gradually evolved the infrastructure that runs the Ruby on Rails application responsible for github.com and api.github.com. We reached a big milestone recently: all web and API requests are served by containers running in Kubernetes clusters deployed on our metal cloud. Moving a critical application to Kubernetes was a fun challenge, and we’re excited to share some of what we’ve learned with you today.
  • Docker Can Now Containerize Legacy Apps Running on Mainframes
    Docker this week announced the first update to its rebranded flagship platform with the release of Docker Enterprise Edition (EE) 17.06. Back in March, Docker rolled out the first Docker EE, built on the backs of what had been known as Docker Commercially Supported and Docker Datacenter. The new release comes on the heels of a report last week from Bloomberg that the container company has been raising money, which will result in $75 million dollars being added to its coffers by the end of the month, bringing with it a new valuation of $1.3 billion — up $300 million from its previous valuation.

Linux Foundation's Dronecode, Ethereum Blockchain, and Kernel Changes

today's howtos

Games: Out of Reach, Darkwood and F1 2017