Ppc64-Utils; Rhea-2009:1247: Enhancement Update - Red Hat ENTERPRISE LINUX 5.4 - TECHNICAL NOTES Manual
Hide thumbs
Also See for ENTERPRISE LINUX 5.4 - TECHNICAL NOTES:
- Reference manual (86 pages) ,
- Manual (80 pages) ,
- Release note (20 pages)
Table of Contents
Advertisement
Updated poppler packages that fix multiple security issues are now available for Red Hat Enterprise
Linux 5.
This update has been rated as having important security impact by the Red Hat Security Response
Team.
Poppler is a Portable Document Format (PDF) rendering library, used by applications such as Evince.
Multiple integer overflow flaws were found in poppler. An attacker could create a malicious PDF file
that would cause applications that use poppler (such as Evince) to crash or, potentially, execute
arbitrary code when opened.
1441
CVE-2009-1188
)
Multiple buffer overflow flaws were found in poppler's JBIG2 decoder. An attacker could create a
malicious PDF file that would cause applications that use poppler (such as Evince) to crash or,
potentially, execute arbitrary code when opened.
Multiple flaws were found in poppler's JBIG2 decoder that could lead to the freeing of arbitrary
memory. An attacker could create a malicious PDF file that would cause applications that use poppler
(such as Evince) to crash or, potentially, execute arbitrary code when opened.
1445
CVE-2009-1180
)
Multiple input validation flaws were found in poppler's JBIG2 decoder. An attacker could create
a malicious PDF file that would cause applications that use poppler (such as Evince) to crash or,
potentially, execute arbitrary code when opened.
Multiple denial of service flaws were found in poppler's JBIG2 decoder. An attacker could create a
malicious PDF file that would cause applications that use poppler (such as Evince) to crash when
opened.
(CVE-2009-0799
Red Hat would like to thank Braden Thomas and Drew Yao of the Apple Product Security team, and
Will Dormann of the CERT/CC for responsibly reporting these flaws.
Users are advised to upgrade to these updated packages, which contain backported patches to
resolve these issues.
1.179. ppc64-utils
1.179.1. RHEA-2009:1247: enhancement update
Enhanced ppc64-utils packages that add support for virtual Fibre Channel devices to the ofpathname
script are now available.
1438
https://www.redhat.com/security/data/cve/CVE-2009-0147.html
1439
https://www.redhat.com/security/data/cve/CVE-2009-1179.html
1440
https://www.redhat.com/security/data/cve/CVE-2009-1187.html
1441
https://www.redhat.com/security/data/cve/CVE-2009-1188.html
1442
https://www.redhat.com/security/data/cve/CVE-2009-0146.html
1443
https://www.redhat.com/security/data/cve/CVE-2009-1182.html
1444
https://www.redhat.com/security/data/cve/CVE-2009-0166.html
1445
https://www.redhat.com/security/data/cve/CVE-2009-1180.html
1446
https://www.redhat.com/security/data/cve/CVE-2009-0800.html
1447
https://www.redhat.com/security/data/cve/CVE-2009-0799.html
1438
(CVE-2009-0147
1447
, CVE-2009-1181, CVE-2009-1183)
1439
CVE-2009-1179
,
,
1442
CVE-2009-1182
(CVE-2009-0146
,
1446
(CVE-2009-0800
)
ppc64-utils
1440
CVE-2009-1187
,
1443
)
(CVE-2009-0166
1444
,
207
Advertisement
Table of Contents
Need help?
Do you have a question about the ENTERPRISE LINUX 5.4 - TECHNICAL NOTES and is the answer not in the manual?
Questions and answers