The KOffice Project XPDF Integer Overflow
$Date: 2004-12-30 11:12:01 +0100 (Thu, 30 Dec 2004) $
KOffice 1.3 (including betas) to 1.3.4 have an integer overflow vulnerability in KWord's PDF import filter.
References
How to fix source code?
KOffice 1.3 (including betas) to 1.3.3
A patch for the source package is available.
(Patch updated the 2004-10-30 16:15 UTC)
(MD5 sum:
b681bc6746c31f3410f20315b0075b25
xpdf_security_integer_overflow.diff
)
The patch applies to the directory koffice/filters/kword/pdf/xpdf/xpdf .
To patch, do: (please adjust paths)
cd koffice/filters/kword/pdf/xpdf/xpdf
patch -p0 < xpdf_security_integer_overflow.diff
KOffice 1.3.4
KOffice 1.3.4 has an integer overflow vulnerability fix in KWord's PDF import filter which is weak against compiler optimization.
A patch for the source package is available.
The patch applies to the directory koffice/filters/kword/pdf/xpdf/xpdf .
To patch, do: (please adjust paths)
cd koffice/filters/kword/pdf/xpdf/xpdf
patch -p0 < koffice_1_3_4_xpdf_security_integer_overflow.diff
