CVE-2011-1554

Summary

CVE	CVE-2011-1554
State	PUBLISHED
Assigner	mitre
Source Priority	CVE Program / NVD first with legacy fallback
Published	2011-03-31 23:55:00 UTC
Updated	2026-04-29 01:13:23 UTC
Description	Off-by-one error in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service (application crash) via a PDF document containing a crafted Type 1 font that triggers an invalid memory read, integer overflow, and invalid pointer dereference, a different vulnerability than CVE-2011-0764.

Risk And Classification

Primary CVSS: v2.0 4.3 from [email protected]

AV:N/AC:M/Au:N/C:N/I:N/A:P

Problem Types: CWE-189 | n/a

CVSS v2.0 Breakdown

Access Vector

Network

Access Complexity

Medium

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

AV:N/AC:M/Au:N/C:N/I:N/A:P

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Foolabs	Xpdf	0.5a	All	All	All
Application	Foolabs	Xpdf	0.7a	All	All	All
Application	Foolabs	Xpdf	0.91a	All	All	All
Application	Foolabs	Xpdf	0.91b	All	All	All
Application	Foolabs	Xpdf	0.91c	All	All	All
Application	Foolabs	Xpdf	0.92a	All	All	All
Application	Foolabs	Xpdf	0.92b	All	All	All
Application	Foolabs	Xpdf	0.92c	All	All	All
Application	Foolabs	Xpdf	0.92d	All	All	All
Application	Foolabs	Xpdf	0.92e	All	All	All
Application	Foolabs	Xpdf	0.93a	All	All	All
Application	Foolabs	Xpdf	0.93b	All	All	All
Application	Foolabs	Xpdf	0.93c	All	All	All
Application	Foolabs	Xpdf	1.00a	All	All	All
Application	Foolabs	Xpdf	3.0.1	All	All	All
Application	Foolabs	Xpdf	3.02pl1	All	All	All
Application	Foolabs	Xpdf	3.02pl2	All	All	All
Application	Foolabs	Xpdf	3.02pl3	All	All	All
Application	Foolabs	Xpdf	3.02pl4	All	All	All
Application	Glyphandcog	Xpdfreader	0.2	All	All	All
Application	Glyphandcog	Xpdfreader	0.3	All	All	All
Application	Glyphandcog	Xpdfreader	0.4	All	All	All
Application	Glyphandcog	Xpdfreader	0.5	All	All	All
Application	Glyphandcog	Xpdfreader	0.6	All	All	All
Application	Glyphandcog	Xpdfreader	0.7	All	All	All
Application	Glyphandcog	Xpdfreader	0.80	All	All	All
Application	Glyphandcog	Xpdfreader	0.90	All	All	All
Application	Glyphandcog	Xpdfreader	0.91	All	All	All
Application	Glyphandcog	Xpdfreader	0.92	All	All	All
Application	Glyphandcog	Xpdfreader	0.93	All	All	All
Application	Glyphandcog	Xpdfreader	1.00	All	All	All
Application	Glyphandcog	Xpdfreader	1.01	All	All	All
Application	Glyphandcog	Xpdfreader	2.00	All	All	All
Application	Glyphandcog	Xpdfreader	2.01	All	All	All
Application	Glyphandcog	Xpdfreader	2.02	All	All	All
Application	Glyphandcog	Xpdfreader	2.03	All	All	All
Application	Glyphandcog	Xpdfreader	3.00	All	All	All
Application	Glyphandcog	Xpdfreader	3.01	All	All	All
Application	Glyphandcog	Xpdfreader	3.02	All	All	All
Application	Glyphandcog	Xpdfreader	All	All	All	All
Application	T1lib	T1lib	0.1	alpha	All	All
Application	T1lib	T1lib	0.2	beta	All	All
Application	T1lib	T1lib	0.3	beta	All	All
Application	T1lib	T1lib	0.4	beta	All	All
Application	T1lib	T1lib	0.5	beta	All	All
Application	T1lib	T1lib	0.6	beta	All	All
Application	T1lib	T1lib	0.7	beta	All	All
Application	T1lib	T1lib	0.8	beta	All	All
Application	T1lib	T1lib	0.9	All	All	All
Application	T1lib	T1lib	0.9.1	All	All	All
Application	T1lib	T1lib	0.9.2	All	All	All
Application	T1lib	T1lib	1.0	All	All	All
Application	T1lib	T1lib	1.0.1	All	All	All
Application	T1lib	T1lib	1.1.0	All	All	All
Application	T1lib	T1lib	1.1.1	All	All	All
Application	T1lib	T1lib	1.2	All	All	All
Application	T1lib	T1lib	1.3	All	All	All
Application	T1lib	T1lib	1.3.1	All	All	All
Application	T1lib	T1lib	5.0.0	All	All	All
Application	T1lib	T1lib	5.0.1	All	All	All
Application	T1lib	T1lib	5.0.2	All	All	All
Application	T1lib	T1lib	5.1.0	All	All	All
Application	T1lib	T1lib	5.1.1	All	All	All
Application	T1lib	T1lib	All	All	All	All

Vendor Declared Affected Products

Source	Vendor	Product	Version	Platforms
CNA	Na	N/a	affected n/a	Not specified

References

Reference	Source	Link	Tags
T1Lib: : Multiple vulnerabilities (GLSA 201701-57) — Gentoo Security	af854a3a-2127-422b-91ae-364da2661108	security.gentoo.org
www.toucan-system.com/advisories/tssa-2011-01.txt	af854a3a-2127-422b-91ae-364da2661108	www.toucan-system.com
About Secunia Research \| Flexera	af854a3a-2127-422b-91ae-364da2661108	secunia.com
Support / Security / Advisories / / MDVSA-2012:144 \| Mandriva	af854a3a-2127-422b-91ae-364da2661108	www.mandriva.com
Xpdf Memory Corruption Errors in t1lib Library Let Remote Users Execute Arbitrary Code - SecurityTracker	af854a3a-2127-422b-91ae-364da2661108	securitytracker.com
xpdf multiple vulnerabilities allow remote code execution - CXSecurity.com	af854a3a-2127-422b-91ae-364da2661108	securityreason.com
xpdf Information for VU#376500	af854a3a-2127-422b-91ae-364da2661108	www.kb.cert.org	US Government Resource
US-CERT Vulnerability Note VU#376500 - Foolabs Xpdf contains a denial of service vulnerability	af854a3a-2127-422b-91ae-364da2661108	www.kb.cert.org	US Government Resource
Xpdf: Download	af854a3a-2127-422b-91ae-364da2661108	www.foolabs.com	Patch
Xpdf Linux Binaries t1lib Vulnerability - Secunia.com	af854a3a-2127-422b-91ae-364da2661108	secunia.com	Vendor Advisory
SecurityFocus	af854a3a-2127-422b-91ae-364da2661108	www.securityfocus.com
Webmail : Solution de messagerie professionnelle - OVHcloud- OVH	af854a3a-2127-422b-91ae-364da2661108	www.vupen.com	Vendor Advisory
Red Hat Customer Portal	af854a3a-2127-422b-91ae-364da2661108	rhn.redhat.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

710532 Gentoo Linux T1Lib Vulnerability (GLSA 201701-57)