Reported on V-S by Dirk Mueller from KDE [shortening CC] > I'm attaching a patch file which I believe covers all of the issues > that have been raised with Xpdf. I don't think it fixes the problem with invalid coordinates in splash handling, for which I attach my patch. example exploit: http://www.marantz.com/pdfs/g_sr7500_man.pdf (page 12 produces a heap buffer overflow).
Created attachment 78206 [details, diff] xpdf-splash-overflow.diff
Printing please advise which packages this affects. I propose to hold off patching until we have an official upstream fix.
my kpdf crashes on that page, too. Seems poppler is affected.
All of evince/poppler 0.5.0, gpdf-2.10.0-r2, and xpdf-3.01-r6 display that entire file fine for me.
kpdf crashes here as well.
Handling this on public bug #120985 *** This bug has been marked as a duplicate of 120985 ***