CVE-2013-6475

Description

Multiple integer overflows in (1) OPVPOutputDev.cxx and (2) oprs/OPVPSplash.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allow remote attackers to execute arbitrary code via a crafted PDF file, which triggers a heap-based buffer overflow.

Affected packages (2)

• Debian/cupsfrom 0, < 1.5.0-16
• Debian/cups-filtersfrom 0, < 1.0.47-1

References (1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-6475