CVE-2009-0165
Summary
| CVE | CVE-2009-0165 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2009-04-23 19:30:00 UTC |
| Updated | 2019-03-06 16:30:00 UTC |
| Description | Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, as used in Poppler and other products, when running on Mac OS X, has unspecified impact, related to "g*allocn." |
Risk And Classification
Problem Types: CWE-189
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Foolabs | Xpdf | 0.5a | All | All | All |
| Application | Foolabs | Xpdf | 0.7a | All | All | All |
| Application | Foolabs | Xpdf | 0.91a | All | All | All |
| Application | Foolabs | Xpdf | 0.91b | All | All | All |
| Application | Foolabs | Xpdf | 0.91c | All | All | All |
| Application | Foolabs | Xpdf | 0.92a | All | All | All |
| Application | Foolabs | Xpdf | 0.92b | All | All | All |
| Application | Foolabs | Xpdf | 0.92c | All | All | All |
| Application | Foolabs | Xpdf | 0.92d | All | All | All |
| Application | Foolabs | Xpdf | 0.92e | All | All | All |
| Application | Foolabs | Xpdf | 0.93a | All | All | All |
| Application | Foolabs | Xpdf | 0.93b | All | All | All |
| Application | Foolabs | Xpdf | 0.93c | All | All | All |
| Application | Foolabs | Xpdf | 1.00a | All | All | All |
| Application | Foolabs | Xpdf | 3.0.1 | All | All | All |
| Application | Foolabs | Xpdf | 0.5a | All | All | All |
| Application | Foolabs | Xpdf | 0.7a | All | All | All |
| Application | Foolabs | Xpdf | 0.91a | All | All | All |
| Application | Foolabs | Xpdf | 0.91b | All | All | All |
| Application | Foolabs | Xpdf | 0.91c | All | All | All |
| Application | Foolabs | Xpdf | 0.92a | All | All | All |
| Application | Foolabs | Xpdf | 0.92b | All | All | All |
| Application | Foolabs | Xpdf | 0.92c | All | All | All |
| Application | Foolabs | Xpdf | 0.92d | All | All | All |
| Application | Foolabs | Xpdf | 0.92e | All | All | All |
| Application | Foolabs | Xpdf | 0.93a | All | All | All |
| Application | Foolabs | Xpdf | 0.93b | All | All | All |
| Application | Foolabs | Xpdf | 0.93c | All | All | All |
| Application | Foolabs | Xpdf | 1.00a | All | All | All |
| Application | Foolabs | Xpdf | 3.0.1 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.2 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.3 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.4 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.5 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.6 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.7 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.80 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.90 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.91 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.92 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.93 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 1.00 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 1.01 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 2.00 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 2.01 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 2.02 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 2.03 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 3.00 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 3.01 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.2 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.3 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.4 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.5 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.6 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.7 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.80 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.90 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.91 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.92 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 0.93 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 1.00 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 1.01 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 2.00 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 2.01 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 2.02 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 2.03 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 3.00 | All | All | All |
| Application | Glyphandcog | Xpdfreader | 3.01 | All | All | All |
| Application | Glyphandcog | Xpdfreader | All | All | All | All |
| Application | Poppler | Poppler | All | All | All | All |
| Application | Poppler | Poppler | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| APPLE-SA-2009-06-17-1 iPhone OS 3.0 Software Update | APPLE | lists.apple.com | |
| SUSE update for cups - Secunia Advisories - Vulnerability Information - Secunia.com | SECUNIA | secunia.com | |
| Debian -- Security Information -- DSA-1793-1 kdegraphics | DEBIAN | www.debian.org | |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| [security-announce] SUSE Security Announcement: cups (SUSE-SA:2009:024) | SUSE | lists.opensuse.org | |
| Slackware update for xpdf - Secunia.com | SECUNIA | secunia.com | |
| [security-announce] SUSE Security Summary Report: SUSE-SR:2009:010 | SUSE | lists.opensuse.org | |
| Apple Mac OS X Security Update Fixes Multiple Vulnerabilities - Secunia Advisories - Vulnerability Information - Secunia.com | SECUNIA | secunia.com | |
| About the security content of Security Update 2009-002 / Mac OS X v10.5.7 | CONFIRM | support.apple.com | |
| US-CERT Technical Cyber Security Alert TA09-133A -- Apple Updates for Multiple Vulnerabilities | CERT | www.us-cert.gov | US Government Resource |
| Debian -- Security Information -- DSA-1790-1 xpdf | DEBIAN | www.debian.org | |
| Xpdf JBIG2 Processing Multiple Security Vulnerabilities | BID | www.securityfocus.com | |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| SUSE Update for Multiple Packages - Advisories - Community | SECUNIA | secunia.com | |
| SUSE Update for Multiple Packages - Secunia Advisories - Vulnerability Information - Secunia.com | SECUNIA | secunia.com | |
| [security-announce] SUSE Security Summary Report: SUSE-SR:2009:012 | SUSE | lists.opensuse.org | |
| About the security content of iPhone OS 3.0 Software Update | CONFIRM | support.apple.com | |
| APPLE-SA-2009-05-12 Security Update 2009-002 / Mac OS X v10.5.7 | APPLE | lists.apple.com | |
| Support / Security / Advisories / / MDVSA-2009:101 | Mandriva | MANDRIVA | www.mandriva.com | |
| The Slackware Linux Project: Slackware Security Advisories | SLACKWARE | slackware.com | |
| Debian update for xpdf - Advisories - Community | SECUNIA | secunia.com | |
| Gentoo Bug 263028 - <app-text/poppler-0.10.5-r1 JBIG2 Multiple vulnerabilities (CVE-2009-{0146,0147,0165,0166,0195,0799,0800,1179,1180,1181,1182,1183,1187,1188}) | CONFIRM | bugs.gentoo.org | Patch |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| Debian update for kdegraphics - Secunia Advisories - Vulnerability Information - Secunia.com | SECUNIA | secunia.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.