Incomplete Patch for Integer Overflow Vulnerabilities in Xpdf 2.0 and 3.0 on 64-bit Linux Distributions

Incomplete Patch for Integer Overflow Vulnerabilities in Xpdf 2.0 and 3.0 on 64-bit Linux Distributions

CVE-2005-0206 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.