CVE-2009-3604: Buffer Overflow
First published: Fri Oct 02 2009(Updated: )
The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x before 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document that triggers a NULL pointer dereference or a heap-based buffer overflow.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/xpdf | <1:2.02-17.el3 | 1:2.02-17.el3 |
| redhat/xpdf | <1:3.00-22.el4_8.1 | 1:3.00-22.el4_8.1 |
| redhat/gpdf | <0:2.8.2-7.7.2.el4_8.5 | 0:2.8.2-7.7.2.el4_8.5 |
| redhat/kdegraphics | <7:3.3.1-15.el4_8.2 | 7:3.3.1-15.el4_8.2 |
| redhat/poppler | <0:0.5.4-4.4.el5_3.9 | 0:0.5.4-4.4.el5_3.9 |
| redhat/kdegraphics | <7:3.5.4-15.el5_4.2 | 7:3.5.4-15.el5_4.2 |
| GNOME GPDF | ||
| KDE KPDF | ||
| Xpdf | =3.02pl1 | |
| Xpdf | =3.02pl2 | |
| Xpdf | =3.02pl3 | |
| Glyph & Cog XpdfReader | =2.00 | |
| Glyph & Cog XpdfReader | =2.01 | |
| Glyph & Cog XpdfReader | =2.02 | |
| Glyph & Cog XpdfReader | =2.03 | |
| Glyph & Cog XpdfReader | =3.00 | |
| Glyph & Cog XpdfReader | =3.01 | |
| Glyph & Cog XpdfReader | =3.02 | |
| Poppler Utilities | =0.1 | |
| Poppler Utilities | =0.1.1 | |
| Poppler Utilities | =0.1.2 | |
| Poppler Utilities | =0.2.0 | |
| Poppler Utilities | =0.3.0 | |
| Poppler Utilities | =0.3.1 | |
| Poppler Utilities | =0.3.2 | |
| Poppler Utilities | =0.3.3 | |
| Poppler Utilities | =0.4.0 | |
| Poppler Utilities | =0.4.1 | |
| Poppler Utilities | =0.4.2 | |
| Poppler Utilities | =0.4.3 | |
| Poppler Utilities | =0.4.4 | |
| Poppler Utilities | =0.5.0 | |
| Poppler Utilities | =0.5.1 | |
| Poppler Utilities | =0.5.2 | |
| Poppler Utilities | =0.5.3 | |
| Poppler Utilities | =0.5.4 | |
| Poppler Utilities | =0.5.9 | |
| Poppler Utilities | =0.5.90 | |
| Poppler Utilities | =0.5.91 | |
| Poppler Utilities | =0.6.0 | |
| Poppler Utilities | =0.6.1 | |
| Poppler Utilities | =0.6.2 | |
| Poppler Utilities | =0.6.3 | |
| Poppler Utilities | =0.6.4 | |
| Poppler Utilities | =0.7.0 | |
| Poppler Utilities | =0.7.1 | |
| Poppler Utilities | =0.7.2 | |
| Poppler Utilities | =0.7.3 | |
| Poppler Utilities | =0.8.0 | |
| Poppler Utilities | =0.8.1 | |
| Poppler Utilities | =0.8.2 | |
| Poppler Utilities | =0.8.3 | |
| Poppler Utilities | =0.8.4 | |
| Poppler Utilities | =0.8.5 | |
| Poppler Utilities | =0.8.6 | |
| Poppler Utilities | =0.8.7 | |
| Poppler Utilities | =0.9.0 | |
| Poppler Utilities | =0.9.1 | |
| Poppler Utilities | =0.9.2 | |
| Poppler Utilities | =0.9.3 | |
| Poppler Utilities | =0.10.0 | |
| Poppler Utilities | =0.10.1 | |
| Poppler Utilities | =0.10.2 | |
| Poppler Utilities | =0.10.3 | |
| Poppler Utilities | =0.10.4 | |
| Poppler Utilities | =0.10.5 | |
| Poppler Utilities | =0.10.6 | |
| Poppler Utilities | =0.10.7 | |
| Poppler Utilities | =0.11.0 | |
| Poppler Utilities | =0.11.1 | |
| Poppler Utilities | =0.11.2 | |
| Poppler Utilities | =0.11.3 | |
| Poppler Utilities | =0.12.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://secunia.com/advisories/37042
- https://rhn.redhat.com/errata/RHSA-2009-1500.html
- http://www.vupen.com/english/advisories/2009/2928
- http://secunia.com/advisories/37023
- http://www.securityfocus.com/bid/36703
- http://secunia.com/advisories/37053
- http://cgit.freedesktop.org/poppler/poppler/commit/?id=9cf2325fb2
- https://bugzilla.redhat.com/show_bug.cgi?id=526911
- http://www.vupen.com/english/advisories/2009/2924
- http://securitytracker.com/id?1023029
- http://secunia.com/advisories/37028
- http://secunia.com/advisories/37037
- https://rhn.redhat.com/errata/RHSA-2009-1501.html
- https://rhn.redhat.com/errata/RHSA-2009-1512.html
- https://rhn.redhat.com/errata/RHSA-2009-1502.html
- http://secunia.com/advisories/37043
- https://rhn.redhat.com/errata/RHSA-2009-1503.html
- http://secunia.com/advisories/37079
- http://secunia.com/advisories/37077
- http://site.pi3.com.pl/adv/xpdf.txt
- http://cgit.freedesktop.org/poppler/poppler/diff/?id=284a928996&id2=75c3466ba2
- http://www.mandriva.com/security/advisories?name=MDVSA-2009:287
- https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00750.html
- http://secunia.com/advisories/37159
- https://www.redhat.com/archives/fedora-package-announce/2009-October/msg00784.html
- http://secunia.com/advisories/37114
- http://www.ubuntu.com/usn/USN-850-1
- http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-274030-1
- http://www.ubuntu.com/usn/USN-850-3
- http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035408.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035340.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035399.html
- http://secunia.com/advisories/39327
- http://www.debian.org/security/2010/dsa-2028
- http://www.vupen.com/english/advisories/2010/0802
- http://www.vupen.com/english/advisories/2010/1040
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:087
- http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021706.1-1
- http://secunia.com/advisories/39938
- http://www.vupen.com/english/advisories/2010/1220
- http://www.debian.org/security/2010/dsa-2050
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:175
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53795
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10969
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=363485&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=363485&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/ftp:/ftp.foolabs.com/pub/xpdf/xpdf-3.02pl4.patch
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=526637#c14
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=526911#c0
- http://admin.fedoraproject.org/updates/poppler-0.8.7-7.fc10
- http://admin.fedoraproject.org/updates/poppler-0.10.7-3.fc11
- https://www.cve.org/CVERecord?id=CVE-2009-3604 https://nvd.nist.gov/vuln/detail/CVE-2009-3604
- https://access.redhat.com/errata/RHSA-2009:1500
- https://access.redhat.com/errata/RHSA-2009:1501
- https://access.redhat.com/errata/RHSA-2009:1503
- https://access.redhat.com/errata/RHSA-2009:1512
- https://access.redhat.com/errata/RHSA-2009:0480
- https://access.redhat.com/errata/RHSA-2009:1502
- https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3604.json
Parent vulnerabilities
(Appears in the following advisories)
Frequently Asked Questions
What is the severity of CVE-2009-3604?
CVE-2009-3604 is classified as a moderate severity vulnerability due to its potential to cause denial of service and possibly execute arbitrary code.
How do I fix CVE-2009-3604?
To fix CVE-2009-3604, update to the latest version of affected packages such as Xpdf and Poppler as specified in vendor advisories.
What software is affected by CVE-2009-3604?
CVE-2009-3604 affects Xpdf versions prior to 3.02pl4, and Poppler versions prior to 0.x, along with some applications like GPdf and KPDF.
Can CVE-2009-3604 lead to remote exploitation?
Yes, CVE-2009-3604 allows remote attackers to exploit the vulnerability through crafted PDF files, leading to a denial of service or arbitrary code execution.
Is there a specific version of Xpdf that is not vulnerable to CVE-2009-3604?
Yes, Xpdf version 3.02pl4 and later are not vulnerable to CVE-2009-3604.
- collector/nvd-historical
- agent/type
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2009-3604
- collector/redhat-cve
- agent/software-canonical-lookup
- agent/severity
- agent/author
- agent/references
- agent/remedy
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/trending
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/redhat
- vendor/gnome
- canonical/gnome gpdf
- vendor/kde
- canonical/kde kpdf
- vendor/foolabs
- canonical/xpdf
- version/xpdf/3.02pl1
- version/xpdf/3.02pl2
- version/xpdf/3.02pl3
- vendor/glyphandcog
- canonical/glyph & cog xpdfreader
- version/glyph & cog xpdfreader/2.00
- version/glyph & cog xpdfreader/2.01
- version/glyph & cog xpdfreader/2.02
- version/glyph & cog xpdfreader/2.03
- version/glyph & cog xpdfreader/3.00
- version/glyph & cog xpdfreader/3.01
- version/glyph & cog xpdfreader/3.02
- vendor/poppler
- canonical/poppler utilities
- version/poppler utilities/0.1
- version/poppler utilities/0.1.1
- version/poppler utilities/0.1.2
- version/poppler utilities/0.2.0
- version/poppler utilities/0.3.0
- version/poppler utilities/0.3.1
- version/poppler utilities/0.3.2
- version/poppler utilities/0.3.3
- version/poppler utilities/0.4.0
- version/poppler utilities/0.4.1
- version/poppler utilities/0.4.2
- version/poppler utilities/0.4.3
- version/poppler utilities/0.4.4
- version/poppler utilities/0.5.0
- version/poppler utilities/0.5.1
- version/poppler utilities/0.5.2
- version/poppler utilities/0.5.3
- version/poppler utilities/0.5.4
- version/poppler utilities/0.5.9
- version/poppler utilities/0.5.90
- version/poppler utilities/0.5.91
- version/poppler utilities/0.6.0
- version/poppler utilities/0.6.1
- version/poppler utilities/0.6.2
- version/poppler utilities/0.6.3
- version/poppler utilities/0.6.4
- version/poppler utilities/0.7.0
- version/poppler utilities/0.7.1
- version/poppler utilities/0.7.2
- version/poppler utilities/0.7.3
- version/poppler utilities/0.8.0
- version/poppler utilities/0.8.1
- version/poppler utilities/0.8.2
- version/poppler utilities/0.8.3
- version/poppler utilities/0.8.4
- version/poppler utilities/0.8.5
- version/poppler utilities/0.8.6
- version/poppler utilities/0.8.7
- version/poppler utilities/0.9.0
- version/poppler utilities/0.9.1
- version/poppler utilities/0.9.2
- version/poppler utilities/0.9.3
- version/poppler utilities/0.10.0
- version/poppler utilities/0.10.1
- version/poppler utilities/0.10.2
- version/poppler utilities/0.10.3
- version/poppler utilities/0.10.4
- version/poppler utilities/0.10.5
- version/poppler utilities/0.10.6
- version/poppler utilities/0.10.7
- version/poppler utilities/0.11.0
- version/poppler utilities/0.11.1
- version/poppler utilities/0.11.2
- version/poppler utilities/0.11.3
- version/poppler utilities/0.12.0