77888 2005-01-13 13:11 0000 app-text/xpdf: the saga continues 2006-03-23 19:28:44 0000 1 Unclassified Gentoo Security Vulnerabilities unspecified All All RESOLVED FIXED A2 [glsa] koon P2 major --- 1 jaervosz@gentoo.org security@gentoo.org printing@gentoo.org jaervosz@gentoo.org 2005-01-13 13:11:07 0000 Multiple Unix/Linux Vendor Xpdf makeFileKey2 Stack Overflow iDEFENSE Security Advisory 01.18.05 http://www.idefense.com/application/poi/display?type=vulnerabilities January 18, 2005 I. BACKGROUND Xpdf is an open-source viewer for PDF files. More information is available at the following site: http://www.foolabs.com/xpdf/ II. DESCRIPTION Remote exploitation of a buffer overflow vulnerability in the xpdf PDF viewer included in multiple Unix and Linux distributions could allow for arbitrary code execution as the user viewing a PDF file. The vulnerability specifically exists due to insufficient bounds checking while processing a PDF file that provides malicious values in the /Encrypt /Length tag. The offending code can be found in the Decrypt::makeFileKey2 function in the source file xpdf/Decrypt.cc. GBool Decrypt::makeFileKey2(int encVersion, int encRevision, int keyLength, GString *ownerKey, GString *userKey, int permissions, GString *fileID, GString *userPassword, Guchar *fileKey) { Guchar *buf; Guchar test[32]; Guchar fState[256]; Guchar tmpKey[16]; Guchar fx, fy; int len, i, j; GBool ok; ... memcpy(test, userKey->getCString(), 32); for (i = 19; i >= 0; --i) { for (j = 0; j < keyLength; ++j) { [overflow] tmpKey[j] = fileKey[j] ^ i; } ... } ... } In this piece of code, the keyLength value is ultimately supplied by the PDF file. This allows an attacker to specify an arbitrarily large value and overwrite portions of stack memory. As a consequence, arbitrary code execution is possible. III. ANALYSIS Successful exploitation of this vulnerability leads to arbitrary code execution as the user who opened the malicious file. An attacker would have to convince a target to open the provided file in order to exploit this vulnerability, thus lessening the impact. Exploitation can be performed reliably, especially with knowledge of the target system. IV. DETECTION iDEFENSE has confirmed the existence of this vulnerability in version 3.00 of xpdf. It is suspected previous versions are vulnerable. The following Linux vendors may be affected by this vulnerability: Novell Inc. (SUSE) Red Hat Inc. The Fedora Project Debian Project Gentoo Foundation Inc. The FreeBSD Project OpenBSD V. WORKAROUND Only open PDF files from trusted individuals. VI. VENDOR RESPONSE A patch to address this issue is available at: ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.00pl3.patch Updated binaries (ver. 3.00pl3) to address this issue are available at: http://www.foolabs.com/xpdf/download.html VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the names CAN-2005-0064 to these issues. This is a candidate for inclusion in the CVE list (http://cve.mitre.org), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 01/06/2004 Initial vendor notification 01/12/2004 Initial vendor response 01/18/2004 Coordinated public disclosure IX. CREDIT The discoverer of this vulnerability wishes to remain anonymous. Get paid for vulnerability research http://www.idefense.com/poi/teams/vcp.jsp X. LEGAL NOTICES Copyright jaervosz@gentoo.org 2005-01-13 13:11:07 0000 Multiple Unix/Linux Vendor Xpdf makeFileKey2 Stack Overflow iDEFENSE Security Advisory 01.18.05 http://www.idefense.com/application/poi/display?type=vulnerabilities January 18, 2005 I. BACKGROUND Xpdf is an open-source viewer for PDF files. More information is available at the following site: http://www.foolabs.com/xpdf/ II. DESCRIPTION Remote exploitation of a buffer overflow vulnerability in the xpdf PDF viewer included in multiple Unix and Linux distributions could allow for arbitrary code execution as the user viewing a PDF file. The vulnerability specifically exists due to insufficient bounds checking while processing a PDF file that provides malicious values in the /Encrypt /Length tag. The offending code can be found in the Decrypt::makeFileKey2 function in the source file xpdf/Decrypt.cc. GBool Decrypt::makeFileKey2(int encVersion, int encRevision, int keyLength, GString *ownerKey, GString *userKey, int permissions, GString *fileID, GString *userPassword, Guchar *fileKey) { Guchar *buf; Guchar test[32]; Guchar fState[256]; Guchar tmpKey[16]; Guchar fx, fy; int len, i, j; GBool ok; ... memcpy(test, userKey->getCString(), 32); for (i = 19; i >= 0; --i) { for (j = 0; j < keyLength; ++j) { [overflow] tmpKey[j] = fileKey[j] ^ i; } ... } ... } In this piece of code, the keyLength value is ultimately supplied by the PDF file. This allows an attacker to specify an arbitrarily large value and overwrite portions of stack memory. As a consequence, arbitrary code execution is possible. III. ANALYSIS Successful exploitation of this vulnerability leads to arbitrary code execution as the user who opened the malicious file. An attacker would have to convince a target to open the provided file in order to exploit this vulnerability, thus lessening the impact. Exploitation can be performed reliably, especially with knowledge of the target system. IV. DETECTION iDEFENSE has confirmed the existence of this vulnerability in version 3.00 of xpdf. It is suspected previous versions are vulnerable. The following Linux vendors may be affected by this vulnerability: Novell Inc. (SUSE) Red Hat Inc. The Fedora Project Debian Project Gentoo Foundation Inc. The FreeBSD Project OpenBSD V. WORKAROUND Only open PDF files from trusted individuals. VI. VENDOR RESPONSE A patch to address this issue is available at: ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.00pl3.patch Updated binaries (ver. 3.00pl3) to address this issue are available at: http://www.foolabs.com/xpdf/download.html VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the names CAN-2005-0064 to these issues. This is a candidate for inclusion in the CVE list (http://cve.mitre.org), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 01/06/2004 Initial vendor notification 01/12/2004 Initial vendor response 01/18/2004 Coordinated public disclosure IX. CREDIT The discoverer of this vulnerability wishes to remain anonymous. Get paid for vulnerability research http://www.idefense.com/poi/teams/vcp.jsp X. LEGAL NOTICES Copyright © 2004 iDEFENSE, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDEFENSE. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please email customerservice@idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. koon@gentoo.org 2005-01-14 02:18:38 0000 declassifying signoff=jaervosz/koon Waiting for more definitive patch koon@gentoo.org 2005-01-15 11:50:35 0000 Created an attachment (id=48566) CAN-2005-0064.patch Patch from RedHat solar@gentoo.org 2005-01-15 12:09:05 0000 Heinrich Wendel (lanius) is the man for this one. adding him to the CC: koon@gentoo.org 2005-01-15 12:18:57 0000 Heinrich: An official patch will be available on the 18th (see url above), but if we can prepare and arch-test another one in the meantime, all the better. We can't commit this to portage until it's public, so please attach the ebuild to the bug so that we let arches test from here. lanius@gentoo.org 2005-01-16 03:32:16 0000 Created an attachment (id=48638) xpdf-3.00-r8.ebuild download the patch into your filesdirectory and use this ebuild koon@gentoo.org 2005-01-16 11:04:25 0000 Arches, please test attached ebuild and report success. This is still confidential until the 18th, we'll try to commit it directly to stable if possible. Calling: for sparc: fmccor@gentoo.org & weeve@gentoo.org for amd64: kugelfang@gentoo.org & blubb@gentoo.org for ppc64: corsair@gentoo.org for alpha: kloeri@gentoo.org for ppc: SeJo@gentoo.org corsair@gentoo.org 2005-01-16 11:19:29 0000 works on ppc64 kugelfang@gentoo.org 2005-01-16 11:30:26 0000 Successfully tested on amd64. fmccor@gentoo.org 2005-01-16 16:36:34 0000 Installs on sparc and seems to work fine for me. kloeri@gentoo.org 2005-01-17 14:00:55 0000 Fine on alpha. koon@gentoo.org 2005-01-18 03:23:37 0000 This is going public sometime today, ppc testing is still needed. koon@gentoo.org 2005-01-18 06:49:36 0000 OK apparently this patch is not sufficient. We'll just wait for the upstream official patch... sorry for wasting your time, folks. lanius@gentoo.org 2005-01-18 06:51:16 0000 commited with "alpha amd64 ~hppa ~ia64 ~ppc ppc64 sparc x86" lanius@gentoo.org 2005-01-18 06:52:07 0000 ok, removed the commit again koon@gentoo.org 2005-01-18 06:58:11 0000 Heinrich: keep the engine running, you will have a lot to commit tonight ! lewk@gentoo.org 2005-01-18 13:58:04 0000 [ http://www.idefense.com/application/poi/display?id=186 ] This issue is now public. carlo@gentoo.org 2005-01-18 16:27:30 0000 Do kdegraphics/koffice get their own bugs or did you forget us!? ;) jaervosz@gentoo.org 2005-01-18 22:26:45 0000 @comment #17 We didn't forget just waited until public disclosure. I've just opend up bug #78619 and bug #78620 koon@gentoo.org 2005-01-19 00:25:32 0000 Created an attachment (id=48920) xpdf-3.00pl3.patch Upstream patch koon@gentoo.org 2005-01-19 00:26:44 0000 Heinrich: Please bump in Portage using the official patch lanius@gentoo.org 2005-01-19 05:34:13 0000 commited koon@gentoo.org 2005-01-19 07:24:13 0000 Arches please test & mark 3.00-r8 stable Target KEYWORDS="alpha amd64 hppa ia64 ppc ppc64 sparc x86" fmccor@gentoo.org 2005-01-19 08:30:20 0000 Stable for sparc. Installs and tests as good. sekretarz@gentoo.org 2005-01-19 13:07:13 0000 Stable on amd64 hansmi@gentoo.org 2005-01-19 13:52:03 0000 Stable on ppc. kloeri@gentoo.org 2005-01-20 10:08:23 0000 Stable on alpha. corsair@gentoo.org 2005-01-20 11:36:42 0000 stable on ppc64 koon@gentoo.org 2005-01-21 02:11:19 0000 corsair: ppc64 stable marking doesn't show in KEYWORDS corsair@gentoo.org 2005-01-21 02:36:16 0000 sorry, now it is definetly marked stable on ppc64 koon@gentoo.org 2005-01-21 12:45:10 0000 GLSA 200501-28 hppa, ia64 please mark stable to benefit from GLSA killerfox@gentoo.org 2005-06-26 05:32:10 0000 Already stable on hppa 48566 2005-01-15 11:50 0000 CAN-2005-0064.patch CAN-2005-0064.patch text/plain LS0tIERlY3J5cHQuY2Muam4JMjAwMi0xMi0wNiAwMDo0NDozMi4wMDAwMDAwMDAgKzAxMDAKKysr IERlY3J5cHQuY2MJMjAwNS0wMS0xNCAxMzozODo0OC4xOTI2NDcxMjggKzAxMDAKQEAgLTEzMiwx MyArMTMyLDE5IEBAIEdCb29sIERlY3J5cHQ6Om1ha2VGaWxlS2V5MihpbnQgZW5jVmVyc2kKICAg R3VjaGFyICpidWY7CiAgIEd1Y2hhciB0ZXN0WzMyXTsKICAgR3VjaGFyIGZTdGF0ZVsyNTZdOwot ICBHdWNoYXIgdG1wS2V5WzE2XTsKKyAgR3VjaGFyICp0bXBLZXk7CiAgIEd1Y2hhciBmeCwgZnk7 CiAgIGludCBsZW4sIGksIGo7CiAgIEdCb29sIG9rOwogCisgIC8vIGNoZWNrIHdoZXRoZXIgd2Ug aGF2ZSBub24temVybyBrZXlMZW5ndGgKKyAgaWYgKCAha2V5TGVuZ3RoICkgeworICAgIHJldHVy biBnRmFsc2U7CisgIH0KKyAgCiAgIC8vIGdlbmVyYXRlIGZpbGUga2V5CiAgIGJ1ZiA9IChHdWNo YXIgKilnbWFsbG9jKDY4ICsgZmlsZUlELT5nZXRMZW5ndGgoKSk7CisgIHRtcEtleSA9IChHdWNo YXIgKilnbWFsbG9jKGtleUxlbmd0aCAqIHNpemVvZihHdWNoYXIpKTsKICAgaWYgKHVzZXJQYXNz d29yZCkgewogICAgIGxlbiA9IHVzZXJQYXNzd29yZC0+Z2V0TGVuZ3RoKCk7CiAgICAgaWYgKGxl biA8IDMyKSB7CkBAIC0xOTEsNiArMTk3LDcgQEAgR0Jvb2wgRGVjcnlwdDo6bWFrZUZpbGVLZXky KGludCBlbmNWZXJzaQogICAgIG9rID0gZ0ZhbHNlOwogICB9CiAKKyAgZ2ZyZWUodG1wS2V5KTsK ICAgZ2ZyZWUoYnVmKTsKICAgcmV0dXJuIG9rOwogfQo= 48638 2005-01-16 03:32 0000 xpdf-3.00-r8.ebuild xpdf-3.00-r8.ebuild text/plain IyBDb3B5cmlnaHQgMTk5OS0yMDA1IEdlbnRvbyBGb3VuZGF0aW9uCiMgRGlzdHJpYnV0ZWQgdW5k ZXIgdGhlIHRlcm1zIG9mIHRoZSBHTlUgR2VuZXJhbCBQdWJsaWMgTGljZW5zZSB2MgojICRIZWFk ZXI6IC92YXIvY3Zzcm9vdC9nZW50b28teDg2L2FwcC10ZXh0L3hwZGYveHBkZi0zLjAwLXI3LmVi dWlsZCx2IDEuOCAyMDA1LzAxLzAxIDE2OjQ0OjQyIGVyYWRpY2F0b3IgRXhwICQKCmluaGVyaXQg ZXV0aWxzCgpERVNDUklQVElPTj0iQW4gWCBWaWV3ZXIgZm9yIFBERiBGaWxlcyIKSE9NRVBBR0U9 Imh0dHA6Ly93d3cuZm9vbGFicy5jb20veHBkZi8iClNSQ19VUkk9ImZ0cDovL2Z0cC5mb29sYWJz LmNvbS9wdWIveHBkZi8ke1B9LnRhci5negoJbGluZ3Vhc19hcj8gKCBmdHA6Ly9mdHAuZm9vbGFi cy5jb20vcHViL3hwZGYveHBkZi1hcmFiaWMudGFyLmd6ICkKCWxpbmd1YXNfemhfQ04/ICggZnRw Oi8vZnRwLmZvb2xhYnMuY29tL3B1Yi94cGRmL3hwZGYtY2hpbmVzZS1zaW1wbGlmaWVkLnRhci5n eiApCglsaW5ndWFzX3poX1RXPyAoIGZ0cDovL2Z0cC5mb29sYWJzLmNvbS9wdWIveHBkZi94cGRm LWNoaW5lc2UtdHJhZGl0aW9uYWwudGFyLmd6ICkKCWxpbmd1YXNfcnU/ICggZnRwOi8vZnRwLmZv b2xhYnMuY29tL3B1Yi94cGRmL3hwZGYtY3lyaWxsaWMudGFyLmd6ICkKCWxpbmd1YXNfZWw/ICgg ZnRwOi8vZnRwLmZvb2xhYnMuY29tL3B1Yi94cGRmL3hwZGYtZ3JlZWsudGFyLmd6ICkKCWxpbmd1 YXNfaGU/ICggZnRwOi8vZnRwLmZvb2xhYnMuY29tL3B1Yi94cGRmL3hwZGYtaGVicmV3LnRhci5n eiApCglsaW5ndWFzX2phPyAoIGZ0cDovL2Z0cC5mb29sYWJzLmNvbS9wdWIveHBkZi94cGRmLWph cGFuZXNlLnRhci5neiApCglsaW5ndWFzX2tvPyAoIGZ0cDovL2Z0cC5mb29sYWJzLmNvbS9wdWIv eHBkZi94cGRmLWtvcmVhbi50YXIuZ3ogKQoJbGluZ3Vhc19sYT8gKCBmdHA6Ly9mdHAuZm9vbGFi cy5jb20vcHViL3hwZGYveHBkZi1sYXRpbjIudGFyLmd6ICkKCWxpbmd1YXNfdGg/ICggZnRwOi8v ZnRwLmZvb2xhYnMuY29tL3B1Yi94cGRmL3hwZGYtdGhhaS50YXIuZ3ogKQoJbGluZ3Vhc190cj8g KCBmdHA6Ly9mdHAuZm9vbGFicy5jb20vcHViL3hwZGYveHBkZi10dXJraXNoLnRhci5neiApIgoK TElDRU5TRT0iR1BMLTIiClNMT1Q9IjAiCktFWVdPUkRTPSJhbHBoYSBhbWQ2NCBocHBhIH5pYTY0 IHBwYyBwcGM2NCBzcGFyYyB4ODYiCklVU0U9Im5vbW90aWYgbm9kcm0iCgpERVBFTkQ9IiFub21v dGlmPyAoIHZpcnR1YWwveDExCgl4MTEtbGlicy9vcGVubW90aWYgKQoJPj1tZWRpYS1saWJzL2Zy ZWV0eXBlLTIuMC41Cgk+PW1lZGlhLWxpYnMvdDFsaWItMS4zCgk+PXZpcnR1YWwvZ2hvc3RzY3Jp cHQtNy4wNy4xLXI1IgoKUkRFUEVORD0iJHtERVBFTkR9CglsaW5ndWFzX2phPyAoID49bWVkaWEt Zm9udHMva29jaGktc3Vic3RpdHV0ZS0yMDAzMDgwOS1yMyApCglsaW5ndWFzX3poX0NOPyAoID49 bWVkaWEtZm9udHMvYXJwaGljZm9udHMtMC4xLXIyICkKCWxpbmd1YXNfemhfVFc/ICggPj1tZWRp YS1mb250cy9hcnBoaWNmb250cy0wLjEtcjIgKQoJbGluZ3Vhc19rbz8gKCA+PW1lZGlhLWZvbnRz L2JhZWttdWstZm9udHMtMi4yICkKCSFhcHAtdGV4dC94cGRmLWNoaW5lc2Utc2ltcGxpZmllZAoJ IWFwcC10ZXh0L3hwZGYtY2hpbmVzZS10cmFkaXRpb25hbAoJIWFwcC10ZXh0L3hwZGYtY3lyaWxs aWMKCSFhcHAtdGV4dC94cGRmLWdyZWVrCgkhYXBwLXRleHQveHBkZi1qYXBhbmVzZQoJIWFwcC10 ZXh0L3hwZGYta29yZWFuCgkhYXBwLXRleHQveHBkZi1sYXRpbjIKCSFhcHAtdGV4dC94cGRmLXRo YWkKCSFhcHAtdGV4dC94cGRmLXR1cmtpc2giClBST1ZJREU9InZpcnR1YWwvcGRmdmlld2VyIgoK c3JjX3VucGFjaygpIHsKCXVucGFjayAke0F9CgljZCAke1N9CgllcGF0Y2ggJHtGSUxFU0RJUn0v eHBkZi0zLjAwLXRydWV0eXBlLW5ldy5kaWZmLmd6CgllcGF0Y2ggJHtGSUxFU0RJUn0veHBkZi0z LjAwLWZyZWV0eXBlLTIuMS43LnBhdGNoCgllcGF0Y2ggJHtGSUxFU0RJUn0veHBkZi0zLjAwLWVt cHR5LWJvb2ttYXJrLnBhdGNoCgllcGF0Y2ggJHtGSUxFU0RJUn0veHBkZi0zLjAwLWNvcmUucGF0 Y2guYnoyCgllcGF0Y2ggJHtGSUxFU0RJUn0veHBkZi0zLjAwLW92ZXJmbG93LnBhdGNoLmJ6MgoJ ZXBhdGNoICR7RklMRVNESVJ9L3hwZGYtMy4wMC1QYXRoU2Nhbm5lci5wYXRjaC5iejIKCXVzZSBu b2RybSAmJiBlcGF0Y2ggJHtGSUxFU0RJUn0veHBkZi0zLjAwLW5vZHJtLmRpZmYKCWVwYXRjaCAk e0ZJTEVTRElSfS94cGRmLWdvby1zaXpldC5wYXRjaAoJZXBhdGNoICR7RklMRVNESVJ9L3hwZGYt My4wMC1zY3JvbGwtb3B0cy5wYXRjaC5iejIKCWVwYXRjaCAke0ZJTEVTRElSfS94cGRmLTMuMDAt cGwyLnBhdGNoCgkoY2QgeHBkZjsgZXBhdGNoICR7RklMRVNESVJ9L0NBTi0yMDA1LTAwNjQucGF0 Y2ggKQoJYXV0b2NvbmYKfQoKc3JjX2NvbXBpbGUoKSB7CgllY29uZiBcCgkJLS1lbmFibGUtZnJl ZXR5cGUyIFwKCQktLXdpdGgtZnJlZXR5cGUyLWluY2x1ZGVzPS91c3IvaW5jbHVkZS9mcmVldHlw ZTIgfHwgZGllCgoJZW1ha2UgfHwgZGllCn0KCnNyY19pbnN0YWxsKCkgewoJbWFrZSBERVNURElS PSR7RH0gaW5zdGFsbCB8fCBkaWUKCXByZXBhbGxtYW4KCWRvZG9jIFJFQURNRSBBTk5PVU5DRSBD SEFOR0VTCglpbnNpbnRvIC9ldGMKCW5ld2lucyAke0ZJTEVTRElSfS94cGRmcmMuMSB4cGRmcmMK CgkjIGluc3RhbGwgbGFuZ3VhZ2VzLCBidXQgbm90IG9uIHBwYzY0IChwcm9kdWNlcyBjcmFzaGVz Li4uKQoJaWYgdXNlICFwcGM2NDsgdGhlbgoJCXVzZSBsaW5ndWFzX2FyICYmIGluc3RhbGxfbGFu ZyB0dXJraXNoCgkJdXNlIGxpbmd1YXNfemhfQ04gJiYgaW5zdGFsbF9sYW5nIGNoaW5lc2Utc2lt cGxpZmllZAoJCXVzZSBsaW5ndWFzX3poX1RXICYmIGluc3RhbGxfbGFuZyBjaGluZXNlLXRyYWRp dGlvbmFsCgkJdXNlIGxpbmd1YXNfcnUgJiYgaW5zdGFsbF9sYW5nIGN5cmlsbGljCgkJdXNlIGxp bmd1YXNfZWwgJiYgaW5zdGFsbF9sYW5nIGdyZWVrCgkJdXNlIGxpbmd1YXNfaGUgJiYgaW5zdGFs bF9sYW5nIGhlYnJldwoJCXVzZSBsaW5ndWFzX2phICYmIGluc3RhbGxfbGFuZyBqYXBhbmVzZQoJ CXVzZSBsaW5ndWFzX2tvICYmIGluc3RhbGxfbGFuZyBrb3JlYW4KCQl1c2UgbGluZ3Vhc19sYSAm JiBpbnN0YWxsX2xhbmcgbGF0aW4yCgkJdXNlIGxpbmd1YXNfdGggJiYgaW5zdGFsbF9sYW5nIHRo YWkKCQl1c2UgbGluZ3Vhc190ciAmJiBpbnN0YWxsX2xhbmcgdHVya2lzaAoJZmkKfQoKaW5zdGFs bF9sYW5nKCkgewoJY2QgLi4veHBkZi0kMQoJc2VkICdzLC91c3IvbG9jYWwvc2hhcmUveHBkZi8s L3Vzci9zaGFyZS94cGRmLyxnJyBhZGQtdG8teHBkZnJjID4+ICR7RH0vZXRjL3hwZGZyYwoJaW5z aW50byAvdXNyL3NoYXJlL3hwZGYvJDEKCWRvaW5zICoudW5pY29kZU1hcAoJZG9pbnMgKi5jaWQq CglpbnNpbnRvIC91c3Ivc2hhcmUveHBkZi8kMS9DTWFwCglkb2lucyBDTWFwLyoKfQo= 48920 2005-01-19 00:25 0000 xpdf-3.00pl3.patch xpdf-3.00pl3.patch text/plain KioqIFhSZWYuY2Mub3JpZwlXZWQgSmFuIDEyIDE3OjEwOjUzIDIwMDUKLS0tIFhSZWYuY2MJV2Vk IEphbiAxMiAxNzoxMToyMiAyMDA1CioqKioqKioqKioqKioqKgoqKiogNzkzLDc5OCAqKioqCi0t LSA3OTMsODAxIC0tLS0KICAJfSBlbHNlIHsKICAJICBrZXlMZW5ndGggPSA1OwogIAl9CisgCWlm IChrZXlMZW5ndGggPiAxNikgeworIAkgIGtleUxlbmd0aCA9IDE2OworIAl9CiAgCXBlcm1GbGFn cyA9IHBlcm1pc3Npb25zLmdldEludCgpOwogIAlpZiAoZW5jVmVyc2lvbiA+PSAxICYmIGVuY1Zl cnNpb24gPD0gMiAmJgogIAkgICAgZW5jUmV2aXNpb24gPj0gMiAmJiBlbmNSZXZpc2lvbiA8PSAz KSB7Cg==