oval:org.mitre.oval:def:23546

Definition Id: oval:org.mitre.oval:def:23546

Oval ID:	oval:org.mitre.oval:def:23546
Title:	ELSA-2010:0859: poppler security update (Important)
Description:	The FoFiType1::parse function in fofi/FoFiType1.cc in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a PDF file with a crafted PostScript Type1 font that contains a negative array index, which bypasses input validation and triggers memory corruption.
Family:	unix	Class:	patch
Reference(s):	ELSA-2010:0859-03 CVE-2010-3702 CVE-2010-3703 CVE-2010-3704	Version:	17
Platform(s):	Oracle Linux 6	Product(s):	poppler
Definition Synopsis:
Oracle Linux 6.x rpm test poppler-qt4 is earlier than 0:0.12.4-3.el6_0.1 AND poppler-devel is earlier than 0:0.12.4-3.el6_0.1 AND poppler-qt-devel is earlier than 0:0.12.4-3.el6_0.1 AND poppler-glib-devel is earlier than 0:0.12.4-3.el6_0.1 AND poppler-qt4-devel is earlier than 0:0.12.4-3.el6_0.1 AND poppler-qt is earlier than 0:0.12.4-3.el6_0.1 AND poppler-glib is earlier than 0:0.12.4-3.el6_0.1 AND poppler-utils is earlier than 0:0.12.4-3.el6_0.1 AND poppler is earlier than 0:0.12.4-3.el6_0.1

Definition Id: oval:org.mitre.oval:def:16594

Oval ID:	oval:org.mitre.oval:def:16594
Title:	Oracle Linux 6.x
Description:	The operating system installed on the system is Oracle Linux 6.x
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:oracle:linux:6	Version:	5
Platform(s):	Oracle Linux 6	Product(s):
Definition Synopsis:
the installed operating system is part of the Unix family AND Oracle Linux 6.x is installed
Referenced By:
oval:org.mitre.oval:def:23546