Patch for poppler-0.6.3 http://gitweb.freedesktop.org/?p=poppler/poppler.git;a=commitdiff;h=1a531dcfee1c6fc79a414c38cbe7327fbf9a59d8 Debian bug: http://bugs.debian.org/476842 Koffice fix attached, extracted from Ubuntu. I can't really say what the scope of this vulnerability is, but it's worthy of a bug.
Created attachment 152827 [details, diff] 40_pdf2-embedded-font-fixes.diff Fix for koffice.
We took care of the xpdf/poppler issue in bug 216850. Please note that koffice and kpdf was not found to be vulnerable by us. The patches Ubuntu applied were only precautionary measures. *** This bug has been marked as a duplicate of bug 216850 ***