Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 68571

Summary: app-text/gpdf: vulnerable xpdf version seems to be included
Product: Gentoo Security Reporter: Matthias Geerdsen (RETIRED) <vorlon>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: major CC: gnome
Priority: High    
Version: unspecified   
Hardware: All   
OS: All   
Whiteboard: A2 [glsa]
Package list:
Runtime testing required: ---

Description Matthias Geerdsen (RETIRED) gentoo-dev 2004-10-22 10:04:58 UTC
The version of xpdf included in gpdf seems to be vulnerable to the issues described in GLSA 200410-20

gnome team, pls verify and patch if appropriate

__
s. also http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:114
Comment 1 foser (RETIRED) gentoo-dev 2004-10-25 08:27:33 UTC
added 0.132-r1 (stable gnome 2.6) & 2.8.0-r1 (~arch gnome 2.8)

arches, please make one of these stable on your platform.
Comment 2 Gustavo Zacarias (RETIRED) gentoo-dev 2004-10-25 08:51:19 UTC
sparc stable.
Comment 3 Simon Stelling (RETIRED) gentoo-dev 2004-10-25 10:06:05 UTC
stable on amd64
Comment 4 Aron Griffis (RETIRED) gentoo-dev 2004-10-25 13:20:02 UTC
alpha and ia64 stable
Comment 5 Jochen Maes (RETIRED) gentoo-dev 2004-10-26 00:04:46 UTC
stable on ppc
Comment 6 Thierry Carrez (RETIRED) gentoo-dev 2004-10-28 00:36:21 UTC
GLSA 200410-30
hppa, mips: please mark stable to benefit from GLSA
Comment 7 Hardave Riar (RETIRED) gentoo-dev 2004-11-05 05:28:31 UTC
Stable on mips.