Language Selection

English French German Italian Portuguese Spanish

Vulnerabilities in several PDF applications

Filed under
Security

Security holes in numerous PDF applications allow attackers to infect systems with malware.

Developers have also released a patch for the free Xpdf PDF reader that fixes four security problems in version 3.02. Exploits for a buffer overflow and a null pointer dereference hole are already in circulation. Problems in Xpdf usually cause a whole string of vulnerabilities in other applications that are based on its code, for example poppler, CUPS , Gpdf and KPDF.

In CUPS, the holes were reportedly closed in the official version 1.4.1.

Rest Here




More in Tux Machines

Leftovers: Gaming

Android Leftovers

Leftovers: OSS

Systemd 222 Will Do Away With Its Accelerometer

For the past four years in systemd there's been a Udev accelerometer helper for exposing the device orientation as a property. With the upcoming systemd 222 release, that will change and instead users taking advantage of device orientation information should switch to iio-sensor-proxy 1.0+. Read more