CVE-2002-1384
EPSS 0.07%xpdf - integer overflow
Published: 1/2/2003Modified: 4/28/2026
Description
Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf.
Affected packages (3)
- Debian/cupsfrom 0, < 1.1.18-1
- Debian/xpdffrom 0, < 2.01-2
- Debian/xpdffrom 0, < 1.00-3.1