Launchpad.net

CVE 2005-0206

The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.

Related bugs and status

CVE-2005-0206 (Candidate) is related to these bugs:

Bug #14171: tetex-bin still vulnerable to CAN-2004-0888 (CAN-2005-0206)

Summary				In	Importance	Status
	14171	tetex-bin still vulnerable to CAN-2004-0888 (CAN-2005-0206)		tetex-bin (Ubuntu)	High	Invalid
	14171	tetex-bin still vulnerable to CAN-2004-0888 (CAN-2005-0206)		tetex-bin (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

REDHAT: RHSA-2005:034
REDHAT: RHSA-2005:053
REDHAT: RHSA-2005:057
REDHAT: RHSA-2005:132
REDHAT: RHSA-2005:213
BID: 11501
MANDRAKE: MDKSA-2005:041
MANDRAKE: MDKSA-2005:042
MANDRAKE: MDKSA-2005:043
MANDRAKE: MDKSA-2005:044
MANDRAKE: MDKSA-2005:052
MANDRAKE: MDKSA-2005:056
XF: xpdf-pdf-bo(17818)
OVAL: oval:org.mitre.oval:de...