6.8 - RHSA-2010:0755

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Summary
Title	cups security update

Informations
Name	RHSA-2010:0755	First vendor Publication	2010-10-07
Vendor	RedHat	Last vendor Modification	2010-10-07
Severity (Vendor)	Important	Revision	01

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score	6.8	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Problem Description:

Updated cups packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4.

The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

3. Description:

The Common UNIX Printing System (CUPS) provides a portable printing layer for UNIX operating systems. The CUPS "pdftops" filter converts Portable Document Format (PDF) files to PostScript.

Multiple flaws were discovered in the CUPS "pdftops" filter. An attacker could create a malicious PDF file that, when printed, would cause "pdftops" to crash or, potentially, execute arbitrary code as the "lp" user. (CVE-2010-3702, CVE-2009-3609)

Users of cups are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing this update, the cupsd daemon will be restarted automatically.

4. Solution:

Before applying this update, make sure all previously-released errata relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at http://kbase.redhat.com/faq/docs/DOC-11259

5. Bugs fixed (http://bugzilla.redhat.com/):

526893 - CVE-2009-3609 xpdf/poppler: ImageStream::ImageStream integer overflow 595245 - CVE-2010-3702 xpdf: uninitialized Gfx::parser pointer dereference

Original Source

Url : https://rhn.redhat.com/errata/RHSA-2010-0755.html

CWE : Common Weakness Enumeration

%	Id	Name
50 %	CWE-476	NULL Pointer Dereference
50 %	CWE-189	Numeric Errors (CWE/SANS Top 25)

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:11043

Oval ID:	oval:org.mitre.oval:def:11043
Title:	Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.
Description:	Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3609	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section tetex-latex is earlier than 0:1.0.7-67.19 AND tetex-dvips is earlier than 0:1.0.7-67.19 AND tetex-fonts is earlier than 0:1.0.7-67.19 AND tetex is earlier than 0:1.0.7-67.19 AND tetex-afm is earlier than 0:1.0.7-67.19 AND tetex-doc is earlier than 0:1.0.7-67.19 AND tetex-xdvi is earlier than 0:1.0.7-67.19 AND xpdf is earlier than 1:2.02-17.el3 OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section tetex-latex is earlier than 0:2.0.2-22.0.1.EL4.16 AND kdegraphics-devel is earlier than 7:3.3.1-15.el4_8.2 AND tetex-dvips is earlier than 0:2.0.2-22.0.1.EL4.16 AND kdegraphics is earlier than 7:3.3.1-15.el4_8.2 AND tetex-fonts is earlier than 0:2.0.2-22.0.1.EL4.16 AND tetex is earlier than 0:2.0.2-22.0.1.EL4.16 AND gpdf is earlier than 0:2.8.2-7.7.2.el4_8.5 AND tetex-afm is earlier than 0:2.0.2-22.0.1.EL4.16 AND xpdf is earlier than 1:3.00-22.el4_8.1 AND tetex-xdvi is earlier than 0:2.0.2-22.0.1.EL4.16 AND tetex-doc is earlier than 0:2.0.2-22.0.1.EL4.16 OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section kdegraphics-devel is earlier than 7:3.5.4-15.el5_4.2 AND cups-lpd is earlier than 1:1.3.7-11.el5_4.3 AND tetex-dvips is earlier than 0:3.0-33.8.el5_5.5 AND kdegraphics is earlier than 7:3.5.4-15.el5_4.2 AND poppler is earlier than 0:0.5.4-4.4.el5_4.11 AND tetex-fonts is earlier than 0:3.0-33.8.el5_5.5 AND cups-libs is earlier than 1:1.3.7-11.el5_4.3 AND tetex is earlier than 0:3.0-33.8.el5_5.5 AND tetex-doc is earlier than 0:3.0-33.8.el5_5.5 AND poppler-devel is earlier than 0:0.5.4-4.4.el5_4.11 AND tetex-latex is earlier than 0:3.0-33.8.el5_5.5 AND poppler-utils is earlier than 0:0.5.4-4.4.el5_4.11 AND cups-devel is earlier than 1:1.3.7-11.el5_4.3 AND tetex-afm is earlier than 0:3.0-33.8.el5_5.5 AND tetex-xdvi is earlier than 0:3.0-33.8.el5_5.5 AND cups is earlier than 1:1.3.7-11.el5_4.3

Definition Id: oval:org.mitre.oval:def:11826

Oval ID:	oval:org.mitre.oval:def:11826
Title:	DSA-2050 kdegraphics -- several vulnerabilities
Description:	Several local vulnerabilities have been discovered in KPDF, a PDF viewer for KDE, which allow the execution of arbitrary code or denial of service if a user is tricked into opening a crafted PDF document.
Family:	unix	Class:	patch
Reference(s):	DSA-2050 CVE-2009-1188 CVE-2009-3603 CVE-2009-3604 CVE-2009-3606 CVE-2009-3608 CVE-2009-3609	Version:	7
Platform(s):	Debian GNU/Linux 5.0	Product(s):	kdegraphics
Definition Synopsis:
Debian GNU/Linux 5.0 is installed Architecture section Architecture independent section Installed architecture is all AND Packages section kdegraphics is earlier than 4:3.5.9-3+lenny3 AND kdegraphics-doc-html is earlier than 4:3.5.9-3+lenny3 OR Architecture dependent section Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is mips AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is mipsel AND Installed architecture is hppa AND Packages section kdegraphics-kfile-plugins is earlier than 4:3.5.9-3+lenny3 AND ksvg is earlier than 4:3.5.9-3+lenny3 AND libkscan-dev is earlier than 4:3.5.9-3+lenny3 AND kgamma is earlier than 4:3.5.9-3+lenny3 AND libkscan1 is earlier than 4:3.5.9-3+lenny3 AND kpovmodeler is earlier than 4:3.5.9-3+lenny3 AND kooka is earlier than 4:3.5.9-3+lenny3 AND kdegraphics-dev is earlier than 4:3.5.9-3+lenny3 AND kghostview is earlier than 4:3.5.9-3+lenny3 AND kfaxview is earlier than 4:3.5.9-3+lenny3 AND kviewshell is earlier than 4:3.5.9-3+lenny3 AND kview is earlier than 4:3.5.9-3+lenny3 AND kfax is earlier than 4:3.5.9-3+lenny3 AND ksnapshot is earlier than 4:3.5.9-3+lenny3 AND kmrml is earlier than 4:3.5.9-3+lenny3 AND kpdf is earlier than 4:3.5.9-3+lenny3 AND kcoloredit is earlier than 4:3.5.9-3+lenny3 AND kiconedit is earlier than 4:3.5.9-3+lenny3 AND kruler is earlier than 4:3.5.9-3+lenny3 AND kuickshow is earlier than 4:3.5.9-3+lenny3 AND kdvi is earlier than 4:3.5.9-3+lenny3 AND kdegraphics-dbg is earlier than 4:3.5.9-3+lenny3 AND kolourpaint is earlier than 4:3.5.9-3+lenny3 AND kamera is earlier than 4:3.5.9-3+lenny3

Definition Id: oval:org.mitre.oval:def:13298

Oval ID:	oval:org.mitre.oval:def:13298
Title:	DSA-2050-1 kdegraphics -- several
Description:	Several local vulnerabilities have been discovered in KPDF, a PDF viewer for KDE, which allow the execution of arbitrary code or denial of service if a user is tricked into opening a crafted PDF document. For the stable distribution, these problems have been fixed in version 4:3.5.9-3+lenny3. The unstable distribution no longer contains kpdf. It's replacement, Okular, links against the poppler PDF library. We recommend that you upgrade your kdegraphics packages.
Family:	unix	Class:	patch
Reference(s):	DSA-2050-1 CVE-2009-1188 CVE-2009-3603 CVE-2009-3604 CVE-2009-3606 CVE-2009-3608 CVE-2009-3609	Version:	7
Platform(s):	Debian GNU/Linux 5.0	Product(s):	kdegraphics
Definition Synopsis:
Debian GNU/Linux 5.0 is installed Architecture section Architecture independet section Installed architecture is all AND Packages section kdegraphics DPKG is earlier than 4:3.5.9-3+lenny3 AND kdegraphics-doc-html DPKG is earlier than 4:3.5.9-3+lenny3 OR Architecture depended section Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is mips AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is mipsel AND Installed architecture is hppa AND Packages section kdegraphics-kfile-plugins DPKG is earlier than 4:3.5.9-3+lenny3 AND ksvg DPKG is earlier than 4:3.5.9-3+lenny3 AND libkscan-dev DPKG is earlier than 4:3.5.9-3+lenny3 AND kgamma DPKG is earlier than 4:3.5.9-3+lenny3 AND libkscan1 DPKG is earlier than 4:3.5.9-3+lenny3 AND kpovmodeler DPKG is earlier than 4:3.5.9-3+lenny3 AND kooka DPKG is earlier than 4:3.5.9-3+lenny3 AND kdegraphics-dev DPKG is earlier than 4:3.5.9-3+lenny3 AND kghostview DPKG is earlier than 4:3.5.9-3+lenny3 AND kfaxview DPKG is earlier than 4:3.5.9-3+lenny3 AND kviewshell DPKG is earlier than 4:3.5.9-3+lenny3 AND kview DPKG is earlier than 4:3.5.9-3+lenny3 AND kfax DPKG is earlier than 4:3.5.9-3+lenny3 AND ksnapshot DPKG is earlier than 4:3.5.9-3+lenny3 AND kmrml DPKG is earlier than 4:3.5.9-3+lenny3 AND kpdf DPKG is earlier than 4:3.5.9-3+lenny3 AND kcoloredit DPKG is earlier than 4:3.5.9-3+lenny3 AND kiconedit DPKG is earlier than 4:3.5.9-3+lenny3 AND kruler DPKG is earlier than 4:3.5.9-3+lenny3 AND kuickshow DPKG is earlier than 4:3.5.9-3+lenny3 AND kdvi DPKG is earlier than 4:3.5.9-3+lenny3 AND kdegraphics-dbg DPKG is earlier than 4:3.5.9-3+lenny3 AND kolourpaint DPKG is earlier than 4:3.5.9-3+lenny3 AND kamera DPKG is earlier than 4:3.5.9-3+lenny3

Definition Id: oval:org.mitre.oval:def:13322

Oval ID:	oval:org.mitre.oval:def:13322
Title:	USN-850-3 -- poppler vulnerabilities
Description:	USN-850-1 fixed vulnerabilities in poppler. This update provides the corresponding updates for Ubuntu 9.10. Original advisory details: It was discovered that poppler contained multiple security issues when parsing malformed PDF documents. If a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial of service or execute arbitrary code with privileges of the user invoking the program.
Family:	unix	Class:	patch
Reference(s):	USN-850-3 CVE-2009-3603 CVE-2009-3604 CVE-2009-3607 CVE-2009-3608 CVE-2009-3609	Version:	5
Platform(s):	Ubuntu 9.10	Product(s):	poppler
Definition Synopsis:
Ubuntu 9.10 is installed Supported architectures section Installed architecture is sparc AND Installed architecture is i386 AND Installed architecture is amd64 AND Installed architecture is lpia AND Installed architecture is powerpc Packages section poppler-utils DPKG is earlier than 0.12.0-0ubuntu2.1 AND libpoppler-qt4-3 DPKG is earlier than 0.12.0-0ubuntu2.1 AND libpoppler-dev DPKG is earlier than 0.12.0-0ubuntu2.1 AND libpoppler-qt-dev DPKG is earlier than 0.12.0-0ubuntu2.1 AND libpoppler-qt2 DPKG is earlier than 0.12.0-0ubuntu2.1 AND libpoppler-qt4-dev DPKG is earlier than 0.12.0-0ubuntu2.1 AND libpoppler5 DPKG is earlier than 0.12.0-0ubuntu2.1 AND libpoppler-glib-dev DPKG is earlier than 0.12.0-0ubuntu2.1 AND libpoppler-glib4 DPKG is earlier than 0.12.0-0ubuntu2.1 AND poppler-dbg DPKG is earlier than 0.12.0-0ubuntu2.1

Definition Id: oval:org.mitre.oval:def:13382

Oval ID:	oval:org.mitre.oval:def:13382
Title:	DSA-2028-1 xpdf -- multiple
Description:	Several vulnerabilities have been identified in xpdf, a suite of tools for viewing and converting Portable Document Format files. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-1188 and CVE-2009-3603 Integer overflow in SplashBitmap::SplashBitmap which might allow remote attackers to execute arbitrary code or an application crash via a crafted PDF document. CVE-2009-3604 NULL pointer dereference or heap-based buffer overflow in Splash::drawImage which might allow remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted PDF document. CVE-2009-3606 Integer overflow in the PSOutputDev::doImageL1Sep which might allow remote attackers to execute arbitrary code via a crafted PDF document. CVE-2009-3608 Integer overflows in the ObjectStream::ObjectStream which might allow remote attackers to execute arbitrary code via a crafted PDF document. CVE-2009-3609 Integer overflow in the ImageStream::ImageStream which might allow remote attackers to cause a denial of service via a crafted PDF document. For the stable distribution, this problem has been fixed in version 3.02-1.4+lenny2. For the testing distribution, this problem will be fixed soon. For the unstable distribution, this problem has been fixed in version 3.02-2.
Family:	unix	Class:	patch
Reference(s):	DSA-2028-1 CVE-2009-1188 CVE-2009-3603 CVE-2009-3604 CVE-2009-3606 CVE-2009-3608 CVE-2009-3609	Version:	5
Platform(s):	Debian GNU/Linux 5.0	Product(s):	xpdf
Definition Synopsis:
Debian GNU/Linux 5.0 is installed Architecture section Architecture independet section Installed architecture is all AND Packages section xpdf-common DPKG is earlier than 3.02-1.4+lenny2 AND xpdf DPKG is earlier than 3.02-1.4+lenny2 OR Architecture depended section Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is hppa AND Packages section xpdf-utils DPKG is earlier than 3.02-1.4+lenny2 AND xpdf-reader DPKG is earlier than 3.02-1.4+lenny2

Definition Id: oval:org.mitre.oval:def:13701

Oval ID:	oval:org.mitre.oval:def:13701
Title:	USN-850-1 -- poppler vulnerabilities
Description:	It was discovered that poppler contained multiple security issues when parsing malformed PDF documents. If a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial of service or execute arbitrary code with privileges of the user invoking the program.
Family:	unix	Class:	patch
Reference(s):	USN-850-1 CVE-2009-0755 CVE-2009-3603 CVE-2009-3604 CVE-2009-3605 CVE-2009-3607 CVE-2009-3608 CVE-2009-3609	Version:	5
Platform(s):	Ubuntu 8.04 Ubuntu 9.04 Ubuntu 6.06 Ubuntu 8.10	Product(s):	poppler
Definition Synopsis:
Release section Ubuntu 8.04 is installed AND Supported architectures section Installed architecture is sparc AND Installed architecture is i386 AND Installed architecture is amd64 AND Installed architecture is lpia AND Installed architecture is powerpc AND Packages section libpoppler-qt-dev DPKG is earlier than 0.6.4-1ubuntu3.3 AND poppler-utils DPKG is earlier than 0.6.4-1ubuntu3.3 AND libpoppler-qt4-2 DPKG is earlier than 0.6.4-1ubuntu3.3 AND libpoppler-dev DPKG is earlier than 0.6.4-1ubuntu3.3 AND libpoppler2 DPKG is earlier than 0.6.4-1ubuntu3.3 AND libpoppler-qt4-dev DPKG is earlier than 0.6.4-1ubuntu3.3 AND libpoppler-glib-dev DPKG is earlier than 0.6.4-1ubuntu3.3 AND libpoppler-glib2 DPKG is earlier than 0.6.4-1ubuntu3.3 AND libpoppler-qt2 DPKG is earlier than 0.6.4-1ubuntu3.3 OR Release section Ubuntu 9.04 is installed AND Supported architectures section Installed architecture is sparc AND Installed architecture is i386 AND Installed architecture is amd64 AND Installed architecture is lpia AND Installed architecture is powerpc AND Packages section poppler-utils DPKG is earlier than 0.10.5-1ubuntu2.4 AND libpoppler-qt4-3 DPKG is earlier than 0.10.5-1ubuntu2.4 AND libpoppler-dev DPKG is earlier than 0.10.5-1ubuntu2.4 AND libpoppler-qt-dev DPKG is earlier than 0.10.5-1ubuntu2.4 AND libpoppler-qt2 DPKG is earlier than 0.10.5-1ubuntu2.4 AND libpoppler-qt4-dev DPKG is earlier than 0.10.5-1ubuntu2.4 AND libpoppler4 DPKG is earlier than 0.10.5-1ubuntu2.4 AND libpoppler-glib-dev DPKG is earlier than 0.10.5-1ubuntu2.4 AND libpoppler-glib4 DPKG is earlier than 0.10.5-1ubuntu2.4 AND poppler-dbg DPKG is earlier than 0.10.5-1ubuntu2.4 OR Release section Ubuntu 6.06 is installed AND Supported architectures section Installed architecture is sparc AND Installed architecture is i386 AND Installed architecture is amd64 AND Installed architecture is powerpc AND Packages section libpoppler1-qt DPKG is earlier than 0.5.1-0ubuntu7.6 AND poppler-utils DPKG is earlier than 0.5.1-0ubuntu7.6 AND libpoppler1-glib DPKG is earlier than 0.5.1-0ubuntu7.6 AND libpoppler-dev DPKG is earlier than 0.5.1-0ubuntu7.6 AND libpoppler-qt-dev DPKG is earlier than 0.5.1-0ubuntu7.6 AND libpoppler1 DPKG is earlier than 0.5.1-0ubuntu7.6 AND libpoppler-glib-dev DPKG is earlier than 0.5.1-0ubuntu7.6 OR Release section Ubuntu 8.10 is installed AND Supported architectures section Installed architecture is sparc AND Installed architecture is i386 AND Installed architecture is amd64 AND Installed architecture is lpia AND Installed architecture is powerpc AND Packages section poppler-utils DPKG is earlier than 0.8.7-1ubuntu0.4 AND libpoppler-qt4-3 DPKG is earlier than 0.8.7-1ubuntu0.4 AND libpoppler-dev DPKG is earlier than 0.8.7-1ubuntu0.4 AND libpoppler-qt-dev DPKG is earlier than 0.8.7-1ubuntu0.4 AND libpoppler3 DPKG is earlier than 0.8.7-1ubuntu0.4 AND libpoppler-qt2 DPKG is earlier than 0.8.7-1ubuntu0.4 AND libpoppler-qt4-dev DPKG is earlier than 0.8.7-1ubuntu0.4 AND libpoppler-glib-dev DPKG is earlier than 0.8.7-1ubuntu0.4 AND libpoppler-glib3 DPKG is earlier than 0.8.7-1ubuntu0.4 AND poppler-dbg DPKG is earlier than 0.8.7-1ubuntu0.4

Definition Id: oval:org.mitre.oval:def:22899

Oval ID:	oval:org.mitre.oval:def:22899
Title:	ELSA-2009:1513: cups security update (Moderate)
Description:	Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.
Family:	unix	Class:	patch
Reference(s):	ELSA-2009:1513-01 CVE-2009-3608 CVE-2009-3609	Version:	13
Platform(s):	Oracle Linux 5	Product(s):	cups
Definition Synopsis:
Oracle Linux 5.x rpm test cups-lpd is earlier than 1:1.3.7-11.el5_4.3 AND cups-devel is earlier than 1:1.3.7-11.el5_4.3 AND cups-libs is earlier than 1:1.3.7-11.el5_4.3 AND cups is earlier than 1:1.3.7-11.el5_4.3

Definition Id: oval:org.mitre.oval:def:22929

Oval ID:	oval:org.mitre.oval:def:22929
Title:	ELSA-2009:1502: kdegraphics security update (Important)
Description:	Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.
Family:	unix	Class:	patch
Reference(s):	ELSA-2009:1502-01 CVE-2009-0791 CVE-2009-1188 CVE-2009-3604 CVE-2009-3606 CVE-2009-3608 CVE-2009-3609	Version:	29
Platform(s):	Oracle Linux 5	Product(s):	kdegraphics
Definition Synopsis:
Oracle Linux 5.x rpm test kdegraphics is earlier than 7:3.5.4-15.el5_4.2 AND kdegraphics-devel is earlier than 7:3.5.4-15.el5_4.2

Definition Id: oval:org.mitre.oval:def:22959

Oval ID:	oval:org.mitre.oval:def:22959
Title:	ELSA-2009:1504: poppler security and bug fix update (Important)
Description:	Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.
Family:	unix	Class:	patch
Reference(s):	ELSA-2009:1504-01 CVE-2009-3603 CVE-2009-3608 CVE-2009-3609	Version:	17
Platform(s):	Oracle Linux 5	Product(s):	poppler
Definition Synopsis:
Oracle Linux 5.x rpm test poppler-utils is earlier than 0:0.5.4-4.4.el5_4.11 AND poppler is earlier than 0:0.5.4-4.4.el5_4.11 AND poppler-devel is earlier than 0:0.5.4-4.4.el5_4.11

Definition Id: oval:org.mitre.oval:def:28897

Oval ID:	oval:org.mitre.oval:def:28897
Title:	RHSA-2009:1502 -- kdegraphics security update (Important)
Description:	Updated kdegraphics packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kdegraphics packages contain applications for the K Desktop Environment, including KPDF, a viewer for Portable Document Format (PDF) files.
Family:	unix	Class:	patch
Reference(s):	RHSA-2009:1502 CESA-2009:1502-CentOS 5 CVE-2009-0791 CVE-2009-1188 CVE-2009-3604 CVE-2009-3606 CVE-2009-3608 CVE-2009-3609	Version:	3
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5	Product(s):	kdegraphics
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x Packages match section kdegraphics-devel is earlier than 7:3.5.4-15.el5_4.2 AND kdegraphics is earlier than 7:3.5.4-15.el5_4.2

Definition Id: oval:org.mitre.oval:def:28916

Oval ID:	oval:org.mitre.oval:def:28916
Title:	RHSA-2009:1504 -- poppler security and bug fix update (Important)
Description:	Updated poppler packages that fix multiple security issues and a bug are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Poppler is a Portable Document Format (PDF) rendering library, used by applications such as Evince.
Family:	unix	Class:	patch
Reference(s):	RHSA-2009:1504 CESA-2009:1504-CentOS 5 CVE-2009-3603 CVE-2009-3608 CVE-2009-3609	Version:	3
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5	Product(s):	poppler
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x Packages match section poppler-devel is earlier than 0:0.5.4-4.4.el5_4.11 AND poppler is earlier than 0:0.5.4-4.4.el5_4.11 AND poppler-utils is earlier than 0:0.5.4-4.4.el5_4.11

Definition Id: oval:org.mitre.oval:def:29310

Oval ID:	oval:org.mitre.oval:def:29310
Title:	RHSA-2009:1513 -- cups security update (Moderate)
Description:	Updated cups packages that fix two security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team.
Family:	unix	Class:	patch
Reference(s):	RHSA-2009:1513 CESA-2009:1513-CentOS 5 CVE-2009-3608 CVE-2009-3609	Version:	3
Platform(s):	Red Hat Enterprise Linux 5 CentOS Linux 5	Product(s):	cups
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 AND The operating system installed on the system is CentOS Linux 5.x Packages match section cups-devel is earlier than 1:1.3.7-11.el5_4.3 AND cups is earlier than 1:1.3.7-11.el5_4.3 AND cups-libs is earlier than 1:1.3.7-11.el5_4.3 AND cups-lpd is earlier than 1:1.3.7-11.el5_4.3

Definition Id: oval:org.mitre.oval:def:6990

Oval ID:	oval:org.mitre.oval:def:6990
Title:	DSA-2028 xpdf -- multiple vulnerabilities
Description:	Several vulnerabilities have been identified in xpdf, a suite of tools for viewing and converting Portable Document Format files. The Common Vulnerabilities and Exposures project identifies the following problems: Integer overflow in SplashBitmap::SplashBitmap which might allow remote attackers to execute arbitrary code or an application crash via a crafted PDF document. NULL pointer dereference or heap-based buffer overflow in Splash::drawImage which might allow remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted PDF document. Integer overflow in the PSOutputDev::doImageL1Sep which might allow remote attackers to execute arbitrary code via a crafted PDF document. Integer overflow in the ObjectStream::ObjectStream which might allow remote attackers to execute arbitrary code via a crafted PDF document. Integer overflow in the ImageStream::ImageStream which might allow remote attackers to cause a denial of service via a crafted PDF document.
Family:	unix	Class:	patch
Reference(s):	DSA-2028 CVE-2009-1188 CVE-2009-3603 CVE-2009-3604 CVE-2009-3606 CVE-2009-3608 CVE-2009-3609	Version:	5
Platform(s):	Debian GNU/Linux 5.0	Product(s):	xpdf
Definition Synopsis:
Debian GNU/Linux 5.0 is installed Architecture section Architecture independent section Installed architecture is all AND Packages section xpdf-common is earlier than 3.02-1.4+lenny2 AND xpdf is earlier than 3.02-1.4+lenny2 AND xpdf-utils is earlier than 3.02-1.4+lenny2 AND xpdf-reader is earlier than 3.02-1.4+lenny2

Definition Id: oval:org.mitre.oval:def:8134

Oval ID:	oval:org.mitre.oval:def:8134
Title:	Multiple Security Vulnerabilities in the Solaris GNOME PDF Rendering Libraries May Lead to a Denial of Service (DoS) or Execution of Arbitrary Code
Description:	Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference or buffer over-read.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-3609	Version:	2
Platform(s):	Sun Solaris 10	Product(s):
Definition Synopsis:
Solaris 10 (SPARC) meets Sun Alert 274030 Solaris 10 (SPARC) is installed AND NOT Patch 120739-06 or later installed OR Solaris 10 (x86) meets Sun Alert 274030 Solaris 10 (x86) is installed AND NOT Patch 120740-06 or later installed

CPE : Common Platform Enumeration

Type	Description	Count
Application	Apple Cups cpe:2.3:a:apple:cups:1.3.9:::::::* cpe:2.3:a:apple:cups:1.3.8:::::::* cpe:2.3:a:apple:cups:1.3.7:::::::* cpe:2.3:a:apple:cups:1.3.6:::::::* cpe:2.3:a:apple:cups:1.3.5:::::::* cpe:2.3:a:apple:cups:1.3.4:::::::* cpe:2.3:a:apple:cups:1.3.3:::::::* cpe:2.3:a:apple:cups:1.3.2:::::::* cpe:2.3:a:apple:cups:1.3.11:::::::* cpe:2.3:a:apple:cups:1.3.10:::::::* cpe:2.3:a:apple:cups:1.3.1:::::::* cpe:2.3:a:apple:cups:1.3.0:::::::* cpe:2.3:a:apple:cups:1.3:rc1:::::: cpe:2.3:a:apple:cups:1.3:b1:::::: cpe:2.3:a:apple:cups:1.3:rc2:::::: cpe:2.3:a:apple:cups:1.2.9:::::::* cpe:2.3:a:apple:cups:1.2.8:::::::* cpe:2.3:a:apple:cups:1.2.7:::::::* cpe:2.3:a:apple:cups:1.2.6:::::::* cpe:2.3:a:apple:cups:1.2.5:::::::* cpe:2.3:a:apple:cups:1.2.4:::::::* cpe:2.3:a:apple:cups:1.2.3:::::::* cpe:2.3:a:apple:cups:1.2.2:::::::* cpe:2.3:a:apple:cups:1.2.12:::::::* cpe:2.3:a:apple:cups:1.2.11:::::::* cpe:2.3:a:apple:cups:1.2.10:::::::* cpe:2.3:a:apple:cups:1.2.1:::::::* cpe:2.3:a:apple:cups:1.2.0:::::::* cpe:2.3:a:apple:cups:1.2:b1:::::: cpe:2.3:a:apple:cups:1.2:b2:::::: cpe:2.3:a:apple:cups:1.2:rc3:::::: cpe:2.3:a:apple:cups:1.2:rc2:::::: cpe:2.3:a:apple:cups:1.2:rc1:::::: cpe:2.3:a:apple:cups:1.1.9-1:::::::* cpe:2.3:a:apple:cups:1.1.9:::::::* cpe:2.3:a:apple:cups:1.1.8:::::::* cpe:2.3:a:apple:cups:1.1.7:::::::* cpe:2.3:a:apple:cups:1.1.6-3:::::::* cpe:2.3:a:apple:cups:1.1.6-2:::::::* cpe:2.3:a:apple:cups:1.1.6-1:::::::* cpe:2.3:a:apple:cups:1.1.6:::::::* cpe:2.3:a:apple:cups:1.1.5-2:::::::* cpe:2.3:a:apple:cups:1.1.5-1:::::::* cpe:2.3:a:apple:cups:1.1.5:::::::* cpe:2.3:a:apple:cups:1.1.4:::::::* cpe:2.3:a:apple:cups:1.1.3:::::::* cpe:2.3:a:apple:cups:1.1.23:rc1:::::: cpe:2.3:a:apple:cups:1.1.23:::::::* cpe:2.3:a:apple:cups:1.1.22:::::::* cpe:2.3:a:apple:cups:1.1.22:rc1:::::: cpe:2.3:a:apple:cups:1.1.22:rc2:::::: cpe:2.3:a:apple:cups:1.1.21:rc2:::::: cpe:2.3:a:apple:cups:1.1.21:rc1:::::: cpe:2.3:a:apple:cups:1.1.21:::::::* cpe:2.3:a:apple:cups:1.1.21:-:::::: cpe:2.3:a:apple:cups:1.1.20:rc3:::::: cpe:2.3:a:apple:cups:1.1.20:::::::* cpe:2.3:a:apple:cups:1.1.20:rc5:::::: cpe:2.3:a:apple:cups:1.1.20:rc4:::::: cpe:2.3:a:apple:cups:1.1.20:rc2:::::: cpe:2.3:a:apple:cups:1.1.20:rc1:::::: cpe:2.3:a:apple:cups:1.1.20:rc6:::::: cpe:2.3:a:apple:cups:1.1.2:::::::* cpe:2.3:a:apple:cups:1.1.19:rc1:::::: cpe:2.3:a:apple:cups:1.1.19:rc3:::::: cpe:2.3:a:apple:cups:1.1.19:rc2:::::: cpe:2.3:a:apple:cups:1.1.19:rc5:::::: cpe:2.3:a:apple:cups:1.1.19:rc4:::::: cpe:2.3:a:apple:cups:1.1.19:::::::* cpe:2.3:a:apple:cups:1.1.18:::::::* cpe:2.3:a:apple:cups:1.1.17:::::::* cpe:2.3:a:apple:cups:1.1.16:::::::* cpe:2.3:a:apple:cups:1.1.15:::::::* cpe:2.3:a:apple:cups:1.1.14:::::::* cpe:2.3:a:apple:cups:1.1.13:::::::* cpe:2.3:a:apple:cups:1.1.12:::::::* cpe:2.3:a:apple:cups:1.1.11:::::::* cpe:2.3:a:apple:cups:1.1.10-1:::::::* cpe:2.3:a:apple:cups:1.1.10:::::::* cpe:2.3:a:apple:cups:1.1.1:::::::* cpe:2.3:a:apple:cups:1.1:::::::* cpe:2.3:a:apple:cups:::::::: cpe:2.3:a:apple:cups:-:::::::*	83
Application	Foolabs Xpdf cpe:2.3:a:foolabs:xpdf:3.02pl3:::::::* cpe:2.3:a:foolabs:xpdf:3.02pl2:::::::* cpe:2.3:a:foolabs:xpdf:3.02pl1:::::::*	3
Application	Freedesktop Poppler cpe:2.3:a:freedesktop:poppler:0.9.3:::::::* cpe:2.3:a:freedesktop:poppler:0.9.2:::::::* cpe:2.3:a:freedesktop:poppler:0.9.1:::::::* cpe:2.3:a:freedesktop:poppler:0.9.0:::::::* cpe:2.3:a:freedesktop:poppler:0.8.7:::::::* cpe:2.3:a:freedesktop:poppler:0.8.6:::::::* cpe:2.3:a:freedesktop:poppler:0.8.5:::::::* cpe:2.3:a:freedesktop:poppler:0.8.4:::::::* cpe:2.3:a:freedesktop:poppler:0.8.3:::::::* cpe:2.3:a:freedesktop:poppler:0.8.2:::::::* cpe:2.3:a:freedesktop:poppler:0.8.1:::::::* cpe:2.3:a:freedesktop:poppler:0.8.0:::::::* cpe:2.3:a:freedesktop:poppler:0.7.3:::::::* cpe:2.3:a:freedesktop:poppler:0.7.2:::::::* cpe:2.3:a:freedesktop:poppler:0.7.1:::::::* cpe:2.3:a:freedesktop:poppler:0.7.0:::::::* cpe:2.3:a:freedesktop:poppler:0.6.4:::::::* cpe:2.3:a:freedesktop:poppler:0.6.3:::::::* cpe:2.3:a:freedesktop:poppler:0.6.2:::::::* cpe:2.3:a:freedesktop:poppler:0.6.1:::::::* cpe:2.3:a:freedesktop:poppler:0.6.0:::::::* cpe:2.3:a:freedesktop:poppler:0.5.91:::::::* cpe:2.3:a:freedesktop:poppler:0.5.90:::::::* cpe:2.3:a:freedesktop:poppler:0.5.9:::::::* cpe:2.3:a:freedesktop:poppler:0.5.4:::::::* cpe:2.3:a:freedesktop:poppler:0.5.3:::::::* cpe:2.3:a:freedesktop:poppler:0.5.2:::::::* cpe:2.3:a:freedesktop:poppler:0.5.1:::::::* cpe:2.3:a:freedesktop:poppler:0.5.0:::::::* cpe:2.3:a:freedesktop:poppler:0.4.4:::::::* cpe:2.3:a:freedesktop:poppler:0.4.3:::::::* cpe:2.3:a:freedesktop:poppler:0.4.2:::::::* cpe:2.3:a:freedesktop:poppler:0.4.1:::::::* cpe:2.3:a:freedesktop:poppler:0.4.0:::::::* cpe:2.3:a:freedesktop:poppler:0.3.3:::::::* cpe:2.3:a:freedesktop:poppler:0.3.2:::::::* cpe:2.3:a:freedesktop:poppler:0.3.1:::::::* cpe:2.3:a:freedesktop:poppler:0.3.0:::::::* cpe:2.3:a:freedesktop:poppler:0.2.0:::::::* cpe:2.3:a:freedesktop:poppler:0.15.1:::::::* cpe:2.3:a:freedesktop:poppler:0.15.0:::::::* cpe:2.3:a:freedesktop:poppler:0.14.5:::::::* cpe:2.3:a:freedesktop:poppler:0.14.4:::::::* cpe:2.3:a:freedesktop:poppler:0.14.3:::::::* cpe:2.3:a:freedesktop:poppler:0.14.2:::::::* cpe:2.3:a:freedesktop:poppler:0.14.1:::::::* cpe:2.3:a:freedesktop:poppler:0.14.0:::::::* cpe:2.3:a:freedesktop:poppler:0.13.4:::::::* cpe:2.3:a:freedesktop:poppler:0.13.3:::::::* cpe:2.3:a:freedesktop:poppler:0.13.2:::::::* cpe:2.3:a:freedesktop:poppler:0.13.1:::::::* cpe:2.3:a:freedesktop:poppler:0.13.0:::::::* cpe:2.3:a:freedesktop:poppler:0.12.4:::::::* cpe:2.3:a:freedesktop:poppler:0.12.3:::::::* cpe:2.3:a:freedesktop:poppler:0.12.2:::::::* cpe:2.3:a:freedesktop:poppler:0.12.1:::::::* cpe:2.3:a:freedesktop:poppler:0.12.0:::::::* cpe:2.3:a:freedesktop:poppler:0.11.3:::::::* cpe:2.3:a:freedesktop:poppler:0.11.2:::::::* cpe:2.3:a:freedesktop:poppler:0.11.1:::::::* cpe:2.3:a:freedesktop:poppler:0.11.0:::::::* cpe:2.3:a:freedesktop:poppler:0.10.7:::::::* cpe:2.3:a:freedesktop:poppler:0.10.6:::::::* cpe:2.3:a:freedesktop:poppler:0.10.5:::::::* cpe:2.3:a:freedesktop:poppler:0.10.4:::::::* cpe:2.3:a:freedesktop:poppler:0.10.3:::::::* cpe:2.3:a:freedesktop:poppler:0.10.2:::::::* cpe:2.3:a:freedesktop:poppler:0.10.1:::::::* cpe:2.3:a:freedesktop:poppler:0.10.0:::::::* cpe:2.3:a:freedesktop:poppler:0.1.2:::::::* cpe:2.3:a:freedesktop:poppler:0.1.1:::::::* cpe:2.3:a:freedesktop:poppler:0.1:::::::* cpe:2.3:a:freedesktop:poppler::::::::	73
Application	Glyphandcog Xpdfreader cpe:2.3:a:glyphandcog:xpdfreader:3.02:::::::* cpe:2.3:a:glyphandcog:xpdfreader:3.01:::::::* cpe:2.3:a:glyphandcog:xpdfreader:3.00:::::::*	3
Application	Poppler cpe:2.3:a:poppler:poppler:0.9.3:::::::* cpe:2.3:a:poppler:poppler:0.9.2:::::::* cpe:2.3:a:poppler:poppler:0.9.1:::::::* cpe:2.3:a:poppler:poppler:0.9.0:::::::* cpe:2.3:a:poppler:poppler:0.8.7:::::::* cpe:2.3:a:poppler:poppler:0.8.6:::::::* cpe:2.3:a:poppler:poppler:0.8.5:::::::* cpe:2.3:a:poppler:poppler:0.8.4:::::::* cpe:2.3:a:poppler:poppler:0.8.3:::::::* cpe:2.3:a:poppler:poppler:0.8.2:::::::* cpe:2.3:a:poppler:poppler:0.8.1:::::::* cpe:2.3:a:poppler:poppler:0.8.0:::::::* cpe:2.3:a:poppler:poppler:0.7.3:::::::* cpe:2.3:a:poppler:poppler:0.7.2:::::::* cpe:2.3:a:poppler:poppler:0.7.1:::::::* cpe:2.3:a:poppler:poppler:0.7.0:::::::* cpe:2.3:a:poppler:poppler:0.6.4:::::::* cpe:2.3:a:poppler:poppler:0.6.3:::::::* cpe:2.3:a:poppler:poppler:0.6.2:::::::* cpe:2.3:a:poppler:poppler:0.6.1:::::::* cpe:2.3:a:poppler:poppler:0.6.0:::::::* cpe:2.3:a:poppler:poppler:0.5.91:::::::* cpe:2.3:a:poppler:poppler:0.5.90:::::::* cpe:2.3:a:poppler:poppler:0.5.9:::::::* cpe:2.3:a:poppler:poppler:0.5.4:::::::* cpe:2.3:a:poppler:poppler:0.5.3:::::::* cpe:2.3:a:poppler:poppler:0.5.2:::::::* cpe:2.3:a:poppler:poppler:0.5.1:::::::* cpe:2.3:a:poppler:poppler:0.5.0:::::::* cpe:2.3:a:poppler:poppler:0.4.4:::::::* cpe:2.3:a:poppler:poppler:0.4.3:::::::* cpe:2.3:a:poppler:poppler:0.4.2:::::::* cpe:2.3:a:poppler:poppler:0.4.1:::::::* cpe:2.3:a:poppler:poppler:0.4.0:::::::* cpe:2.3:a:poppler:poppler:0.3.3:::::::* cpe:2.3:a:poppler:poppler:0.3.2:::::::* cpe:2.3:a:poppler:poppler:0.3.1:::::::* cpe:2.3:a:poppler:poppler:0.3.0:::::::* cpe:2.3:a:poppler:poppler:0.2.0:::::::* cpe:2.3:a:poppler:poppler:0.12.0:::::::* cpe:2.3:a:poppler:poppler:0.11.3:::::::* cpe:2.3:a:poppler:poppler:0.11.2:::::::* cpe:2.3:a:poppler:poppler:0.11.1:::::::* cpe:2.3:a:poppler:poppler:0.11.0:::::::* cpe:2.3:a:poppler:poppler:0.10.7:::::::* cpe:2.3:a:poppler:poppler:0.10.6:::::::* cpe:2.3:a:poppler:poppler:0.10.5:::::::* cpe:2.3:a:poppler:poppler:0.10.4:::::::* cpe:2.3:a:poppler:poppler:0.10.3:::::::* cpe:2.3:a:poppler:poppler:0.10.2:::::::* cpe:2.3:a:poppler:poppler:0.10.1:::::::* cpe:2.3:a:poppler:poppler:0.10.0:::::::* cpe:2.3:a:poppler:poppler:0.1.2:::::::* cpe:2.3:a:poppler:poppler:0.1.1:::::::* cpe:2.3:a:poppler:poppler:0.1:::::::* cpe:2.3:a:poppler:poppler::::::::	56
Application	Xpdfreader Xpdf cpe:2.3:a:xpdfreader:xpdf:3.02:-:::::: cpe:2.3:a:xpdfreader:xpdf:3.02:pl1:::::: cpe:2.3:a:xpdfreader:xpdf:3.02:pl2:::::: cpe:2.3:a:xpdfreader:xpdf:3.02:pl3:::::: cpe:2.3:a:xpdfreader:xpdf:3.02:pl4:::::: cpe:2.3:a:xpdfreader:xpdf::::::::	6
Os	Canonical Ubuntu Linux cpe:2.3:o:canonical:ubuntu_linux:10.10:::::::* cpe:2.3:o:canonical:ubuntu_linux:10.04::::-::: cpe:2.3:o:canonical:ubuntu_linux:9.10:::::::* cpe:2.3:o:canonical:ubuntu_linux:9.04:::::::* cpe:2.3:o:canonical:ubuntu_linux:8.04::::-::: cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*	6
Os	Debian Debian Linux cpe:2.3:o:debian:debian_linux:6.0:::::::* cpe:2.3:o:debian:debian_linux:5.0:::::::*	2
Os	Fedoraproject Fedora cpe:2.3:o:fedoraproject:fedora:14:::::::* cpe:2.3:o:fedoraproject:fedora:13:::::::* cpe:2.3:o:fedoraproject:fedora:12:::::::*	3
Os	Opensuse cpe:2.3:o:opensuse:opensuse:11.3:::::::* cpe:2.3:o:opensuse:opensuse:11.2:::::::* cpe:2.3:o:opensuse:opensuse:11.1:::::::*	3
Os	Redhat Enterprise Linux Desktop cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:::::::*	1
Os	Redhat Enterprise Linux Server cpe:2.3:o:redhat:enterprise_linux_server:5.0:::::::*	1
Os	Redhat Enterprise Linux Workstation cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:::::::*	1
Os	Suse Linux Enterprise Server cpe:2.3:o:suse:linux_enterprise_server:11:sp1:::::: cpe:2.3:o:suse:linux_enterprise_server:11:-:::::: cpe:2.3:o:suse:linux_enterprise_server:10:sp3:::-:::* cpe:2.3:o:suse:linux_enterprise_server:9:::::::*	4

OpenVAS Exploits

Date	Description
2012-08-24	Name : CentOS Update for tetex CESA-2012:1201 centos5 File : nvt/gb_CESA-2012_1201_tetex_centos5.nasl
2012-08-24	Name : RedHat Update for tetex RHSA-2012:1201-01 File : nvt/gb_RHSA-2012_1201-01_tetex.nasl
2011-11-18	Name : Mandriva Update for poppler MDVSA-2011:175 (poppler) File : nvt/gb_mandriva_MDVSA_2011_175.nasl
2011-08-09	Name : CentOS Update for kdegraphics CESA-2010:0753 centos5 i386 File : nvt/gb_CESA-2010_0753_kdegraphics_centos5_i386.nasl
2011-08-09	Name : CentOS Update for poppler CESA-2010:0749 centos5 i386 File : nvt/gb_CESA-2010_0749_poppler_centos5_i386.nasl
2011-08-09	Name : CentOS Update for xpdf CESA-2009:1500 centos3 i386 File : nvt/gb_CESA-2009_1500_xpdf_centos3_i386.nasl
2011-08-09	Name : CentOS Update for tetex CESA-2010:0400 centos5 i386 File : nvt/gb_CESA-2010_0400_tetex_centos5_i386.nasl
2011-08-09	Name : CentOS Update for cups CESA-2009:1513 centos5 i386 File : nvt/gb_CESA-2009_1513_cups_centos5_i386.nasl
2011-08-09	Name : CentOS Update for kdegraphics CESA-2009:1512 centos4 i386 File : nvt/gb_CESA-2009_1512_kdegraphics_centos4_i386.nasl
2011-08-09	Name : CentOS Update for xpdf CESA-2009:1501 centos4 i386 File : nvt/gb_CESA-2009_1501_xpdf_centos4_i386.nasl
2011-08-09	Name : CentOS Update for poppler CESA-2009:1504 centos5 i386 File : nvt/gb_CESA-2009_1504_poppler_centos5_i386.nasl
2011-08-09	Name : CentOS Update for gpdf CESA-2009:1503 centos4 i386 File : nvt/gb_CESA-2009_1503_gpdf_centos4_i386.nasl
2011-08-09	Name : CentOS Update for kdegraphics CESA-2009:1502 centos5 i386 File : nvt/gb_CESA-2009_1502_kdegraphics_centos5_i386.nasl
2011-03-07	Name : Debian Security Advisory DSA 2135-1 (xpdf) File : nvt/deb_2135_1.nasl
2010-12-02	Name : Fedora Update for xpdf FEDORA-2010-16744 File : nvt/gb_fedora_2010_16744_xpdf_fc14.nasl
2010-12-02	Name : Fedora Update for poppler FEDORA-2010-15857 File : nvt/gb_fedora_2010_15857_poppler_fc14.nasl
2010-11-17	Name : Debian Security Advisory DSA 2116-1 (poppler) File : nvt/deb_2116_1.nasl
2010-11-16	Name : Fedora Update for xpdf FEDORA-2010-16705 File : nvt/gb_fedora_2010_16705_xpdf_fc12.nasl
2010-11-16	Name : Fedora Update for xpdf FEDORA-2010-16662 File : nvt/gb_fedora_2010_16662_xpdf_fc13.nasl
2010-11-16	Name : Mandriva Update for xpdf MDVSA-2010:228 (xpdf) File : nvt/gb_mandriva_MDVSA_2010_228.nasl
2010-11-16	Name : Mandriva Update for poppler MDVSA-2010:230 (poppler) File : nvt/gb_mandriva_MDVSA_2010_230.nasl
2010-11-16	Name : Mandriva Update for poppler MDVSA-2010:231 (poppler) File : nvt/gb_mandriva_MDVSA_2010_231.nasl
2010-10-22	Name : Ubuntu Update for poppler vulnerabilities USN-1005-1 File : nvt/gb_ubuntu_USN_1005_1.nasl
2010-10-22	Name : Fedora Update for poppler FEDORA-2010-15981 File : nvt/gb_fedora_2010_15981_poppler_fc12.nasl
2010-10-22	Name : Fedora Update for poppler FEDORA-2010-15911 File : nvt/gb_fedora_2010_15911_poppler_fc13.nasl
2010-10-19	Name : RedHat Update for poppler RHSA-2010:0749-01 File : nvt/gb_RHSA-2010_0749-01_poppler.nasl
2010-10-19	Name : RedHat Update for kdegraphics RHSA-2010:0753-01 File : nvt/gb_RHSA-2010_0753-01_kdegraphics.nasl
2010-10-19	Name : RedHat Update for xpdf RHSA-2010:0750-01 File : nvt/gb_RHSA-2010_0750-01_xpdf.nasl
2010-10-19	Name : CentOS Update for cups CESA-2010:0755 centos4 i386 File : nvt/gb_CESA-2010_0755_cups_centos4_i386.nasl
2010-10-19	Name : CentOS Update for cups CESA-2010:0754 centos3 i386 File : nvt/gb_CESA-2010_0754_cups_centos3_i386.nasl
2010-10-19	Name : CentOS Update for kdegraphics CESA-2010:0753 centos4 i386 File : nvt/gb_CESA-2010_0753_kdegraphics_centos4_i386.nasl
2010-10-19	Name : CentOS Update for gpdf CESA-2010:0752 centos4 i386 File : nvt/gb_CESA-2010_0752_gpdf_centos4_i386.nasl
2010-10-19	Name : CentOS Update for xpdf CESA-2010:0751 centos4 i386 File : nvt/gb_CESA-2010_0751_xpdf_centos4_i386.nasl
2010-10-19	Name : CentOS Update for xpdf CESA-2010:0750 centos3 i386 File : nvt/gb_CESA-2010_0750_xpdf_centos3_i386.nasl
2010-10-19	Name : RedHat Update for xpdf RHSA-2010:0751-01 File : nvt/gb_RHSA-2010_0751-01_xpdf.nasl
2010-10-19	Name : RedHat Update for gpdf RHSA-2010:0752-01 File : nvt/gb_RHSA-2010_0752-01_gpdf.nasl
2010-10-19	Name : RedHat Update for cups RHSA-2010:0755-01 File : nvt/gb_RHSA-2010_0755-01_cups.nasl
2010-10-19	Name : RedHat Update for cups RHSA-2010:0754-01 File : nvt/gb_RHSA-2010_0754-01_cups.nasl
2010-08-20	Name : Ubuntu Update for koffice vulnerabilities USN-973-1 File : nvt/gb_ubuntu_USN_973_1.nasl
2010-06-03	Name : Debian Security Advisory DSA 2050-1 (kdegraphics) File : nvt/deb_2050_1.nasl
2010-05-17	Name : CentOS Update for tetex CESA-2010:0399 centos4 i386 File : nvt/gb_CESA-2010_0399_tetex_centos4_i386.nasl
2010-05-17	Name : CentOS Update for tetex CESA-2010:0401 centos3 i386 File : nvt/gb_CESA-2010_0401_tetex_centos3_i386.nasl
2010-05-07	Name : RedHat Update for tetex RHSA-2010:0401-01 File : nvt/gb_RHSA-2010_0401-01_tetex.nasl
2010-05-07	Name : RedHat Update for tetex RHSA-2010:0400-01 File : nvt/gb_RHSA-2010_0400-01_tetex.nasl
2010-05-07	Name : RedHat Update for tetex RHSA-2010:0399-01 File : nvt/gb_RHSA-2010_0399-01_tetex.nasl
2010-04-21	Name : Debian Security Advisory DSA 2028-1 (xpdf) File : nvt/deb_2028_1.nasl
2010-03-12	Name : Mandriva Update for irqbalance MDVA-2010:086 (irqbalance) File : nvt/gb_mandriva_MDVA_2010_086.nasl
2010-03-12	Name : Mandriva Update for poppler MDVSA-2010:055 (poppler) File : nvt/gb_mandriva_MDVSA_2010_055.nasl
2010-03-02	Name : Fedora Update for pdfedit FEDORA-2010-1842 File : nvt/gb_fedora_2010_1842_pdfedit_fc11.nasl
2010-03-02	Name : Fedora Update for pdfedit FEDORA-2010-1377 File : nvt/gb_fedora_2010_1377_pdfedit_fc12.nasl
2009-12-30	Name : Mandriva Security Advisory MDVSA-2009:334 (poppler) File : nvt/mdksa_2009_334.nasl
2009-12-30	Name : Mandriva Security Advisory MDVSA-2009:336 (koffice) File : nvt/mdksa_2009_336.nasl
2009-12-14	Name : Mandriva Security Advisory MDVSA-2009:282-1 (cups) File : nvt/mdksa_2009_282_1.nasl
2009-12-10	Name : Mandriva Security Advisory MDVSA-2009:287-1 (xpdf) File : nvt/mdksa_2009_287_1.nasl
2009-11-23	Name : Ubuntu USN-850-3 (poppler) File : nvt/ubuntu_850_3.nasl
2009-11-17	Name : SLES10: Security update for kdegraphics3-pdf File : nvt/sles10_kdegraphics3-pd0.nasl
2009-11-11	Name : Fedora Core 11 FEDORA-2009-10845 (poppler) File : nvt/fcore_2009_10845.nasl
2009-11-11	Name : Fedora Core 10 FEDORA-2009-10823 (poppler) File : nvt/fcore_2009_10823.nasl
2009-11-11	Name : SuSE Security Summary SUSE-SR:2009:018 File : nvt/suse_sr_2009_018.nasl
2009-11-11	Name : SLES10: Security update for xpdf File : nvt/sles10_xpdf2.nasl
2009-11-11	Name : CentOS Security Advisory CESA-2009:1513 (cups) File : nvt/ovcesa2009_1513.nasl
2009-11-11	Name : CentOS Security Advisory CESA-2009:1504 (poppler) File : nvt/ovcesa2009_1504.nasl
2009-11-11	Name : CentOS Security Advisory CESA-2009:1502 (kdegraphics) File : nvt/ovcesa2009_1502.nasl
2009-10-27	Name : Mandrake Security Advisory MDVSA-2009:287 (xpdf) File : nvt/mdksa_2009_287.nasl
2009-10-27	Name : Ubuntu USN-850-1 (poppler) File : nvt/ubuntu_850_1.nasl
2009-10-27	Name : FreeBSD Ports: xpdf File : nvt/freebsd_xpdf4.nasl
2009-10-27	Name : Mandrake Security Advisory MDVSA-2009:283 (cups) File : nvt/mdksa_2009_283.nasl
2009-10-27	Name : Mandrake Security Advisory MDVSA-2009:282 (cups) File : nvt/mdksa_2009_282.nasl
2009-10-27	Name : Mandrake Security Advisory MDVSA-2009:280 (cups) File : nvt/mdksa_2009_280.nasl
2009-10-27	Name : Fedora Core 10 FEDORA-2009-10694 (xpdf) File : nvt/fcore_2009_10694.nasl
2009-10-27	Name : Fedora Core 11 FEDORA-2009-10648 (xpdf) File : nvt/fcore_2009_10648.nasl
2009-10-27	Name : Mandrake Security Advisory MDVSA-2009:281 (cups) File : nvt/mdksa_2009_281.nasl
2009-10-19	Name : RedHat Security Advisory RHSA-2009:1513 File : nvt/RHSA_2009_1513.nasl
2009-10-19	Name : RedHat Security Advisory RHSA-2009:1500 File : nvt/RHSA_2009_1500.nasl
2009-10-19	Name : CentOS Security Advisory CESA-2009:1512 (kdegraphics) File : nvt/ovcesa2009_1512.nasl
2009-10-19	Name : CentOS Security Advisory CESA-2009:1503 (gpdf) File : nvt/ovcesa2009_1503.nasl
2009-10-19	Name : CentOS Security Advisory CESA-2009:1501 (xpdf) File : nvt/ovcesa2009_1501.nasl
2009-10-19	Name : CentOS Security Advisory CESA-2009:1500 (xpdf) File : nvt/ovcesa2009_1500.nasl
2009-10-19	Name : RedHat Security Advisory RHSA-2009:1501 File : nvt/RHSA_2009_1501.nasl
2009-10-19	Name : RedHat Security Advisory RHSA-2009:1502 File : nvt/RHSA_2009_1502.nasl
2009-10-19	Name : RedHat Security Advisory RHSA-2009:1503 File : nvt/RHSA_2009_1503.nasl
2009-10-19	Name : RedHat Security Advisory RHSA-2009:1512 File : nvt/RHSA_2009_1512.nasl
2009-10-19	Name : RedHat Security Advisory RHSA-2009:1504 File : nvt/RHSA_2009_1504.nasl
0000-00-00	Name : Slackware Advisory SSA:2009-302-01 xpdf File : nvt/esoft_slk_ssa_2009_302_01.nasl
0000-00-00	Name : Slackware Advisory SSA:2009-302-02 poppler File : nvt/esoft_slk_ssa_2009_302_02.nasl
0000-00-00	Name : Slackware Advisory SSA:2010-324-01 xpdf File : nvt/esoft_slk_ssa_2010_324_01.nasl
0000-00-00	Name : Slackware Advisory SSA:2010-324-02 poppler File : nvt/esoft_slk_ssa_2010_324_02.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
69064	Poppler Gfx::getPos PDF Handling Uninitialized Pointer Dereference DoS
59180	Poppler Stream.cc ImageStream::ImageStream Function PDF Handling Overflow
59179	Xpdf Stream.cc ImageStream::ImageStream Function PDF Handling Overflow

Nessus® Vulnerability Scanner

Date	Description
2017-09-01	Name : The remote OracleVM host is missing one or more security updates. File : oraclevm_OVMSA-2017-0147.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_OpenOffice_org-110330.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_libpoppler-devel-101016.nasl - Type : ACT_GATHER_INFO
2014-02-18	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201402-17.nasl - Type : ACT_GATHER_INFO
2013-10-07	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201310-03.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2009-1500.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2009-1501.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2009-1503.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1504.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1512.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1513.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0399.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0400.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0401.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0749.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2010-0750.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2010-0751.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing a security update. File : oraclelinux_ELSA-2010-0752.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0753.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0754.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0755.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2010-0859.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2012-1201.nasl - Type : ACT_GATHER_INFO
2012-08-24	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2012-1201.nasl - Type : ACT_GATHER_INFO
2012-08-24	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-1201.nasl - Type : ACT_GATHER_INFO
2012-08-24	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20120823_tetex_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20091015_cups_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing a security update. File : sl_20091015_gpdf_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20091015_kdegraphics_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20091015_poppler_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing a security update. File : sl_20091015_xpdf_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20100506_tetex_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20100506_tetex_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20100506_tetex_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20101007_cups_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing a security update. File : sl_20101007_gpdf_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20101007_kdegraphics_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20101007_poppler_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing a security update. File : sl_20101007_xpdf_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20101110_poppler_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2011-05-05	Name : The remote openSUSE host is missing a security update. File : suse_11_1_libpoppler-devel-101021.nasl - Type : ACT_GATHER_INFO
2011-05-05	Name : The remote openSUSE host is missing a security update. File : suse_11_1_xpdf-101014.nasl - Type : ACT_GATHER_INFO
2011-05-05	Name : The remote openSUSE host is missing a security update. File : suse_11_2_OpenOffice_org-110330.nasl - Type : ACT_GATHER_INFO
2011-05-05	Name : The remote openSUSE host is missing a security update. File : suse_11_2_libpoppler-devel-101016.nasl - Type : ACT_GATHER_INFO
2011-03-21	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_libreoffice331-110318.nasl - Type : ACT_GATHER_INFO
2011-03-21	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_libreoffice331-7365.nasl - Type : ACT_GATHER_INFO
2011-02-14	Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_f2b43905354511e08e810022190034c0.nasl - Type : ACT_GATHER_INFO
2011-01-27	Name : The remote Windows host has a program affected by multiple vulnerabilities. File : openoffice_33.nasl - Type : ACT_GATHER_INFO
2011-01-21	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_libpoppler-devel-101017.nasl - Type : ACT_GATHER_INFO
2011-01-21	Name : The remote SuSE 11 host is missing a security update. File : suse_11_xpdf-101015.nasl - Type : ACT_GATHER_INFO
2011-01-03	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2135.nasl - Type : ACT_GATHER_INFO
2010-12-23	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_xpdf-7190.nasl - Type : ACT_GATHER_INFO
2010-12-10	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kdegraphics3-7235.nasl - Type : ACT_GATHER_INFO
2010-12-06	Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12665.nasl - Type : ACT_GATHER_INFO
2010-12-06	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_cups-7244.nasl - Type : ACT_GATHER_INFO
2010-12-02	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_libpoppler-devel-101016.nasl - Type : ACT_GATHER_INFO
2010-11-28	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_libpoppler4-7192.nasl - Type : ACT_GATHER_INFO
2010-11-22	Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2010-324-01.nasl - Type : ACT_GATHER_INFO
2010-11-22	Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2010-324-02.nasl - Type : ACT_GATHER_INFO
2010-11-18	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0859.nasl - Type : ACT_GATHER_INFO
2010-11-14	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-228.nasl - Type : ACT_GATHER_INFO
2010-11-14	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-230.nasl - Type : ACT_GATHER_INFO
2010-11-14	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-231.nasl - Type : ACT_GATHER_INFO
2010-11-05	Name : The remote Fedora host is missing a security update. File : fedora_2010-16662.nasl - Type : ACT_GATHER_INFO
2010-11-05	Name : The remote Fedora host is missing a security update. File : fedora_2010-16705.nasl - Type : ACT_GATHER_INFO
2010-11-05	Name : The remote Fedora host is missing a security update. File : fedora_2010-16744.nasl - Type : ACT_GATHER_INFO
2010-10-20	Name : The remote Fedora host is missing a security update. File : fedora_2010-15911.nasl - Type : ACT_GATHER_INFO
2010-10-20	Name : The remote Fedora host is missing a security update. File : fedora_2010-15981.nasl - Type : ACT_GATHER_INFO
2010-10-20	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-1005-1.nasl - Type : ACT_GATHER_INFO
2010-10-18	Name : The remote Fedora host is missing a security update. File : fedora_2010-15857.nasl - Type : ACT_GATHER_INFO
2010-10-14	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2119.nasl - Type : ACT_GATHER_INFO
2010-10-12	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2010-0749.nasl - Type : ACT_GATHER_INFO
2010-10-11	Name : The remote CentOS host is missing a security update. File : centos_RHSA-2010-0750.nasl - Type : ACT_GATHER_INFO
2010-10-11	Name : The remote CentOS host is missing a security update. File : centos_RHSA-2010-0751.nasl - Type : ACT_GATHER_INFO
2010-10-11	Name : The remote CentOS host is missing a security update. File : centos_RHSA-2010-0752.nasl - Type : ACT_GATHER_INFO
2010-10-11	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2010-0753.nasl - Type : ACT_GATHER_INFO
2010-10-11	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2010-0754.nasl - Type : ACT_GATHER_INFO
2010-10-11	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2010-0755.nasl - Type : ACT_GATHER_INFO
2010-10-11	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_cups-6721.nasl - Type : ACT_GATHER_INFO
2010-10-11	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kdegraphics3-pdf-6652.nasl - Type : ACT_GATHER_INFO
2010-10-11	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_xpdf-6560.nasl - Type : ACT_GATHER_INFO
2010-10-08	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0749.nasl - Type : ACT_GATHER_INFO
2010-10-08	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0750.nasl - Type : ACT_GATHER_INFO
2010-10-08	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0751.nasl - Type : ACT_GATHER_INFO
2010-10-08	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0752.nasl - Type : ACT_GATHER_INFO
2010-10-08	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0753.nasl - Type : ACT_GATHER_INFO
2010-10-08	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0754.nasl - Type : ACT_GATHER_INFO
2010-10-08	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0755.nasl - Type : ACT_GATHER_INFO
2010-08-18	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-973-1.nasl - Type : ACT_GATHER_INFO
2010-07-30	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-280.nasl - Type : ACT_GATHER_INFO
2010-07-01	Name : The remote Fedora host is missing a security update. File : fedora_2010-1377.nasl - Type : ACT_GATHER_INFO
2010-07-01	Name : The remote Fedora host is missing a security update. File : fedora_2010-1805.nasl - Type : ACT_GATHER_INFO
2010-07-01	Name : The remote Fedora host is missing a security update. File : fedora_2010-1842.nasl - Type : ACT_GATHER_INFO
2010-06-01	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2010-0400.nasl - Type : ACT_GATHER_INFO
2010-05-25	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2050.nasl - Type : ACT_GATHER_INFO
2010-05-11	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0399.nasl - Type : ACT_GATHER_INFO
2010-05-11	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0400.nasl - Type : ACT_GATHER_INFO
2010-05-11	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0401.nasl - Type : ACT_GATHER_INFO
2010-05-10	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2010-0399.nasl - Type : ACT_GATHER_INFO
2010-05-10	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2010-0401.nasl - Type : ACT_GATHER_INFO
2010-04-06	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2028.nasl - Type : ACT_GATHER_INFO
2010-03-08	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-055.nasl - Type : ACT_GATHER_INFO
2010-02-24	Name : The remote Debian host is missing a security-related update. File : debian_DSA-1941.nasl - Type : ACT_GATHER_INFO
2010-01-06	Name : The remote CentOS host is missing a security update. File : centos_RHSA-2009-1501.nasl - Type : ACT_GATHER_INFO
2010-01-06	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1502.nasl - Type : ACT_GATHER_INFO
2010-01-06	Name : The remote CentOS host is missing a security update. File : centos_RHSA-2009-1503.nasl - Type : ACT_GATHER_INFO
2010-01-06	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1504.nasl - Type : ACT_GATHER_INFO
2010-01-06	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1512.nasl - Type : ACT_GATHER_INFO
2010-01-06	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1513.nasl - Type : ACT_GATHER_INFO
2009-12-30	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-346.nasl - Type : ACT_GATHER_INFO
2009-12-27	Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_12561.nasl - Type : ACT_GATHER_INFO
2009-12-22	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_cups-6720.nasl - Type : ACT_GATHER_INFO
2009-12-21	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-336.nasl - Type : ACT_GATHER_INFO
2009-11-16	Name : The remote openSUSE host is missing a security update. File : suse_11_0_kdegraphics3-pdf-091110.nasl - Type : ACT_GATHER_INFO
2009-11-16	Name : The remote openSUSE host is missing a security update. File : suse_11_1_kdegraphics3-pdf-091110.nasl - Type : ACT_GATHER_INFO
2009-11-16	Name : The remote openSUSE host is missing a security update. File : suse_cups-6565.nasl - Type : ACT_GATHER_INFO
2009-11-16	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_kdegraphics3-pdf-6653.nasl - Type : ACT_GATHER_INFO
2009-11-09	Name : The remote openSUSE host is missing a security update. File : suse_11_0_xpdf-091023.nasl - Type : ACT_GATHER_INFO
2009-11-09	Name : The remote openSUSE host is missing a security update. File : suse_11_1_xpdf-091024.nasl - Type : ACT_GATHER_INFO
2009-11-09	Name : The remote openSUSE host is missing a security update. File : suse_xpdf-6558.nasl - Type : ACT_GATHER_INFO
2009-11-06	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_xpdf-6556.nasl - Type : ACT_GATHER_INFO
2009-11-03	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-850-3.nasl - Type : ACT_GATHER_INFO
2009-10-29	Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2009-302-01.nasl - Type : ACT_GATHER_INFO
2009-10-29	Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2009-302-02.nasl - Type : ACT_GATHER_INFO
2009-10-28	Name : The remote Fedora host is missing a security update. File : fedora_2009-10823.nasl - Type : ACT_GATHER_INFO
2009-10-28	Name : The remote Fedora host is missing a security update. File : fedora_2009-10845.nasl - Type : ACT_GATHER_INFO
2009-10-23	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-287.nasl - Type : ACT_GATHER_INFO
2009-10-22	Name : The remote Fedora host is missing a security update. File : fedora_2009-10648.nasl - Type : ACT_GATHER_INFO
2009-10-22	Name : The remote Fedora host is missing a security update. File : fedora_2009-10694.nasl - Type : ACT_GATHER_INFO
2009-10-22	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-850-1.nasl - Type : ACT_GATHER_INFO
2009-10-20	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2009-282.nasl - Type : ACT_GATHER_INFO
2009-10-16	Name : The remote CentOS host is missing a security update. File : centos_RHSA-2009-1500.nasl - Type : ACT_GATHER_INFO
2009-10-16	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2009-1500.nasl - Type : ACT_GATHER_INFO
2009-10-16	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2009-1501.nasl - Type : ACT_GATHER_INFO
2009-10-16	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1502.nasl - Type : ACT_GATHER_INFO
2009-10-16	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2009-1503.nasl - Type : ACT_GATHER_INFO
2009-10-16	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1504.nasl - Type : ACT_GATHER_INFO
2009-10-16	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1512.nasl - Type : ACT_GATHER_INFO
2009-10-16	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1513.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:53:55	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	2
Oval ID(s)	14
CPE ID(s)	245
osvdb(s)	3
Openvas Exploit(s)	87
Nessus® Exploit(s)	139

	Related
7.5	CVE-2010-3702
4.3	CVE-2009-3609
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 2 more Alert(s)