Solution
Please Install the Updated Packages.
Insight
Xpdf is an X Window System based viewer for Portable Document Format (PDF) files.
An uninitialized pointer use flaw was discovered in Xpdf. An attacker could create a malicious PDF file that, when opened, would cause Xpdf to crash or, potentially, execute arbitrary code. (CVE-2010-3702)
Users are advised to upgrade to this updated package, which contains a backported patch to correct this issue.
Affected
xpdf on Red Hat Enterprise Linux AS version 3,
Red Hat Enterprise Linux ES version 3,
Red Hat Enterprise Linux WS version 3
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2010-3702 -
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related Vulnerabilities