CVE-2009-0195

EPSS 9.0%

Published: 4/23/2009Modified: 4/28/2026

Description

Heap-based buffer overflow in Xpdf 3.02pl2 and earlier, CUPS 1.3.9, and probably other products, allows remote attackers to execute arbitrary code via a PDF file with crafted JBIG2 symbol dictionary segments.

Affected packages (1)

Debian/xpdffrom 0, < 3.02-1.4+lenny1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-0195