CVE-2005-0064

Publication date 2 May 2005

Last updated 24 July 2024

Ubuntu priority

Buffer overflow in the Decrypt::makeFileKey2 function in Decrypt.cc for xpdf 3.00 and earlier allows remote attackers to execute arbitrary code via a PDF file with a large /Encrypt /Length keyLength value.

Status

Show unmaintained releases

No maintained releases are affected by this CVE.

Package	Ubuntu Release	Status
cupsys	7.04 feisty	Not affected
	6.10 edgy	Not affected
	6.06 LTS dapper	Not affected
gpdf	7.04 feisty	Not in release
	6.10 edgy	Fixed 2.10.0-2
	6.06 LTS dapper	Fixed 2.10.0-2
kdegraphics	7.04 feisty	Fixed 3.5.2-0ubuntu6
	6.10 edgy	Fixed 3.5.2-0ubuntu6
	6.06 LTS dapper	Fixed 3.5.2-0ubuntu6
koffice	7.04 feisty	Fixed 1.6.2-0ubuntu1.1
	6.10 edgy	Fixed 1.5.2-0ubuntu2.2
	6.06 LTS dapper	Fixed 1.5.0-0ubuntu9.2
libextractor	7.04 feisty	Fixed 0.5.14-1
	6.10 edgy	Fixed 0.5.14-1
	6.06 LTS dapper	Fixed 0.5.14-1
pdftohtml	7.04 feisty	Fixed 0.36-13
	6.10 edgy	Fixed 0.36-13
	6.06 LTS dapper	Fixed 0.36-13
tetex-bin	7.04 feisty	Not affected
	6.10 edgy	Not affected
	6.06 LTS dapper	Not affected
xpdf	7.04 feisty	Fixed 3.01-9ubuntu3
	6.10 edgy	Fixed 3.01-9ubuntu1.1
	6.06 LTS dapper	Fixed 3.01-7ubuntu0.1

CVE-2005-0064

Status

References

Related Ubuntu Security Notices (USN)

Other references