CVE-2005-0206

Xpdf <3.0 - Integer Overflow

Title source: llm
STIX 2.1

Description

The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.

References (14)

Core 14
Core References
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11107
Vendor Advisory vendor-advisory x_refsource_mandrake
http://www.mandriva.com/security/advisories?name=MDKSA-2005:041
Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/11501
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2005-034.html
Vendor Advisory vendor-advisory x_refsource_mandrake
http://www.mandriva.com/security/advisories?name=MDKSA-2005:056
Vendor Advisory vendor-advisory x_refsource_mandrake
http://www.mandriva.com/security/advisories?name=MDKSA-2005:043
Patch, Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2005-213.html
Vendor Advisory vendor-advisory x_refsource_mandrake
http://www.mandriva.com/security/advisories?name=MDKSA-2005:044
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2005-053.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/17818
Vendor Advisory vendor-advisory x_refsource_mandrake
http://www.mandriva.com/security/advisories?name=MDKSA-2005:052
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2005-132.html
Vendor Advisory vendor-advisory x_refsource_mandrake
http://www.mandriva.com/security/advisories?name=MDKSA-2005:042
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2005-057.html

Scores

EPSS 0.0653
EPSS Percentile 91.2%

Details

Status published
Products (39)
ascii/ptex 3.1.4
cstex/cstetex 2.0.2
debian/debian_linux 3.0 (12 CPE variants)
easy_software_products/cups 1.0.4
easy_software_products/cups 1.0.4_8
easy_software_products/cups 1.1.1
easy_software_products/cups 1.1.4
easy_software_products/cups 1.1.4_2
easy_software_products/cups 1.1.4_3
easy_software_products/cups 1.1.4_5
... and 29 more
Published Apr 27, 2005
Tracked Since Feb 18, 2026