xpdf and kpdf do not properly validate the "loca" table in PDF files, which allows local users to cause a denial of service (disk consumption and hang) via a PDF file with a "broken" loca table, which causes a large temporary file to be created when xpdf attempts to reconstruct the information.
Metrics
Affected Vendors & Products
Advisories
Source | ID | Title |
---|---|---|
![]() |
DSA-1136-1 | New gpdf packages fix denial of service |
![]() |
DSA-936-1 | New libextractor packages fix arbitrary code execution |
![]() |
EUVD-2005-2098 | xpdf and kpdf do not properly validate the "loca" table in PDF files, which allows local users to cause a denial of service (disk consumption and hang) via a PDF file with a "broken" loca table, which causes a large temporary file to be created when xpdf attempts to reconstruct the information. |
![]() |
USN-163-1 | xpdf vulnerability |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.

Status: PUBLISHED
Assigner: redhat
Published:
Updated: 2024-08-07T22:15:37.381Z
Reserved: 2005-06-30T00:00:00
Link: CVE-2005-2097

No data.

Status : Deferred
Published: 2005-08-16T04:00:00.000
Modified: 2025-04-03T01:03:51.193
Link: CVE-2005-2097


No data.