CVE-2005-3625

描述

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1) CCITTFaxDecode and (2) DCTDecode streams, aka "Infinite CPU spins."

受影響套件(4)

• Debian/cupsfrom 0, < 1.1.22-7
• Debian/libextractorfrom 0, < 0.5.9-1
• Debian/popplerfrom 0, < 0.4.4-1
• Debian/xpdffrom 0, < 3.01-4

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2005-3625