CVE-2005-0206

Xpdf <3.0 - Integer Overflow

Title source: llm

Description

The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.

References (14)

[Patch, Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2005-213.html

[Patch, Vendor Advisory] http://www.securityfocus.com/bid/11501

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/17818

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2005-034.html

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2005-053.html

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2005-057.html

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2005-132.html

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDKSA-2005:041

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDKSA-2005:042

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDKSA-2005:043

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDKSA-2005:044

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDKSA-2005:052

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDKSA-2005:056

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11107

Scores

EPSS 0.0653

EPSS Percentile 91.0%

Classification

Status draft

Affected Products (50)

ascii/ptex

cstex/cstetex

easy_software_products/cups

... and 35 more

Timeline

Published Apr 27, 2005

Tracked Since Feb 18, 2026