CVE-2011-2902 (retired)

Priority
Description
zxpdf in xpdf before 3.02-19 as packaged in Debian unstable and
3.02-12+squeeze1 as packaged in Debian squeeze deletes temporary files
insecurely, which allows remote attackers to delete arbitrary files via a
crafted .pdf.gz file name.
Package
Source: xpdf (LP Ubuntu Debian)
Upstream:released (3.02-19)
More Information

Updated: 2019-09-19 15:37:36 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)