xpdf 缓冲区溢出代码执行漏洞

admin

0
文章

0
评论

2023-12-12 20:13:50 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

中危 xpdf 缓冲区溢出代码执行漏洞

CVE编号

CVE-2007-3387

利用情况

暂无

补丁情况

官方补丁

披露时间

2007-07-31

漏洞描述

在xpdf 3.02中的StreamPredictor :: StreamPredictor函数中的整数溢出，如在(1)0.5.91之前的poppler，(2)2.8.2之前的gpdf，(3)kpdf，(4)kdegraphics，(5)CUPS，( 6)PDFedit和其他产品中使用时，可能允许远程攻击者通过精心设计的PDF文件执行任意代码，该文件触发StreamPredictor :: getNextLine函数中基于堆栈的缓冲区溢出。

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl1.patch
ftp://patches.sgi.com/support/free/security/advisories/20070801-01-P.asc
http://bugs.gentoo.org/show_bug.cgi?id=187139
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=248194
http://osvdb.org/40127
http://secunia.com/advisories/26188
http://secunia.com/advisories/26251
http://secunia.com/advisories/26254
http://secunia.com/advisories/26255
http://secunia.com/advisories/26257
http://secunia.com/advisories/26278
http://secunia.com/advisories/26281
http://secunia.com/advisories/26283
http://secunia.com/advisories/26292
http://secunia.com/advisories/26293
http://secunia.com/advisories/26297
http://secunia.com/advisories/26307
http://secunia.com/advisories/26318
http://secunia.com/advisories/26325
http://secunia.com/advisories/26342
http://secunia.com/advisories/26343
http://secunia.com/advisories/26358
http://secunia.com/advisories/26365
http://secunia.com/advisories/26370
http://secunia.com/advisories/26395
http://secunia.com/advisories/26403
http://secunia.com/advisories/26405
http://secunia.com/advisories/26407
http://secunia.com/advisories/26410
http://secunia.com/advisories/26413
http://secunia.com/advisories/26425
http://secunia.com/advisories/26432
http://secunia.com/advisories/26436
http://secunia.com/advisories/26467
http://secunia.com/advisories/26468
http://secunia.com/advisories/26470
http://secunia.com/advisories/26514
http://secunia.com/advisories/26607
http://secunia.com/advisories/26627
http://secunia.com/advisories/26862
http://secunia.com/advisories/26982
http://secunia.com/advisories/27156
http://secunia.com/advisories/27281
http://secunia.com/advisories/27308
http://secunia.com/advisories/27637
http://secunia.com/advisories/30168
http://security.gentoo.org/glsa/glsa-200709-12.xml
http://security.gentoo.org/glsa/glsa-200709-17.xml
http://security.gentoo.org/glsa/glsa-200710-20.xml
http://security.gentoo.org/glsa/glsa-200711-34.xml
http://security.gentoo.org/glsa/glsa-200805-13.xml
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackw...
http://sourceforge.net/project/shownotes.php?release_id=535497
http://support.avaya.com/elmodocs2/security/ASA-2007-401.htm
http://www.debian.org/security/2007/dsa-1347
http://www.debian.org/security/2007/dsa-1348
http://www.debian.org/security/2007/dsa-1349
http://www.debian.org/security/2007/dsa-1350
http://www.debian.org/security/2007/dsa-1352
http://www.debian.org/security/2007/dsa-1354
http://www.debian.org/security/2007/dsa-1355
http://www.debian.org/security/2007/dsa-1357
http://www.gentoo.org/security/en/glsa/glsa-200710-08.xml
http://www.kde.org/info/security/advisory-20070730-1.txt
http://www.mandriva.com/security/advisories?name=MDKSA-2007:158
http://www.mandriva.com/security/advisories?name=MDKSA-2007:159
http://www.mandriva.com/security/advisories?name=MDKSA-2007:160
http://www.mandriva.com/security/advisories?name=MDKSA-2007:161
http://www.mandriva.com/security/advisories?name=MDKSA-2007:162
http://www.mandriva.com/security/advisories?name=MDKSA-2007:163
http://www.mandriva.com/security/advisories?name=MDKSA-2007:164
http://www.mandriva.com/security/advisories?name=MDKSA-2007:165
http://www.novell.com/linux/security/advisories/2007_15_sr.html
http://www.novell.com/linux/security/advisories/2007_16_sr.html
http://www.redhat.com/support/errata/RHSA-2007-0720.html
http://www.redhat.com/support/errata/RHSA-2007-0729.html
http://www.redhat.com/support/errata/RHSA-2007-0730.html
http://www.redhat.com/support/errata/RHSA-2007-0731.html
http://www.redhat.com/support/errata/RHSA-2007-0732.html
http://www.redhat.com/support/errata/RHSA-2007-0735.html
http://www.securityfocus.com/archive/1/476508/100/0/threaded
http://www.securityfocus.com/archive/1/476519/30/5400/threaded
http://www.securityfocus.com/archive/1/476765/30/5340/threaded
http://www.securityfocus.com/bid/25124
http://www.securitytracker.com/id?1018473
http://www.slackware.org/security/viewer.php?l=slackware-security&y=2007&m=sl...
http://www.ubuntu.com/usn/usn-496-1
http://www.ubuntu.com/usn/usn-496-2
http://www.vupen.com/english/advisories/2007/2704
http://www.vupen.com/english/advisories/2007/2705
https://issues.foresightlinux.org/browse/FL-471
https://issues.rpath.com/browse/RPL-1596
https://issues.rpath.com/browse/RPL-1604
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	应用	apple	cups	*		Up to (including) 1.3.11
	运行在以下环境
	应用	freedesktop	poppler	*		Up to (excluding) 0.5.91
	运行在以下环境
	应用	gpdf_project	gpdf	*		Up to (excluding) 2.8.2
	运行在以下环境
	应用	xpdfreader	xpdf	3.02	-
	运行在以下环境
	系统	canonical	ubuntu_linux	6.06	-
	运行在以下环境
	系统	canonical	ubuntu_linux	6.10	-
	运行在以下环境
	系统	canonical	ubuntu_linux	7.04	-
	运行在以下环境
	系统	centos_5	kdegraphics-devel	*		Up to (excluding) 3.0-33.1.el5
	运行在以下环境
	系统	debian	debian_linux	3.1	-
	运行在以下环境
	系统	debian	debian_linux	4.0	-
	运行在以下环境
	系统	debian_10	cups	*		Up to (excluding) 2.2.10-6+deb10u6
	运行在以下环境
	系统	debian_11	cups	*		Up to (excluding) 2.3.3op2-3+deb11u6
	运行在以下环境
	系统	debian_12	cups	*		Up to (excluding) 2.4.2-3+deb12u4
	运行在以下环境
	系统	debian_3.1	kdegraphics	*		Up to (excluding) 0.4.2-2sarge6
	运行在以下环境
	系统	debian_4.0	kdegraphics	*		Up to (excluding) 0.4.5-5.1etch1
	运行在以下环境
	系统	debian_5.0	kdegraphics	*		Up to (excluding) 0.5.4-6lenny2
	运行在以下环境
	系统	debian_sid	cups	*		Up to (excluding) 2.4.7-1
	运行在以下环境
	系统	oracle_5	oraclelinux-release	*		Up to (excluding) 3.0-33.1.el5
	运行在以下环境
	系统	redhat_5	cups	*		Up to (excluding) 1:1.1.22-0.rc1.9.20.2
	运行在以下环境
	系统	suse_11	cups	*		Up to (excluding) 1.3.9-8.30