FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

kpdf -- heap based buffer overflow

Affected packages
kdegraphics < 3.5.1_1

Details

VuXML ID 432bf98d-9e25-11da-b410-000e0c2e438a
Discovery 2006-02-02
Entry 2006-02-15

The KDE team reports:

kpdf, the KDE pdf viewer, shares code with xpdf. xpdf contains a heap based buffer overflow in the splash rasterizer engine that can crash kpdf or even execute arbitrary code.

References

CVE Name CVE-2006-0301
URL http://www.kde.org/info/security/advisory-20060202-1.txt