CVE-2010-3703 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2010-3703 Interim 1 18 2023-02-15T02:34:44Z current 2021-05-30T12:54:00Z 2023-02-15T02:34:44Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2010-3703 The PostScriptFunction::PostScriptFunction function in poppler/Function.cc in the PDF parser in poppler 0.8.7 and possibly other versions up to 0.15.1, and possibly other products, allows context-dependent attackers to cause a denial of service (crash) via a PDF file that triggers an uninitialized pointer dereference. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html E-Mail link for SUSE-SR:2010:024 https://lists.opensuse.org/opensuse-updates/2010-11/msg00036.html E-Mail link for openSUSE-SU-2010:0976-1 https://lists.opensuse.org/opensuse-updates/2010-12/msg00052.html E-Mail link for openSUSE-SU-2010:1091-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Server 11 SP1 for Teradata SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 libpoppler-devel-0.12.3-1.10.1 libpoppler-glib-devel-0.12.3-1.10.1 libpoppler-glib4-0.12.3-1.10.1 libpoppler-glib4-0.12.3-1.3.1 libpoppler-glib4-0.12.3-1.8.1 libpoppler-qt2-0.12.3-1.10.1 libpoppler-qt3-devel-0.12.3-1.10.1 libpoppler-qt4-3-0.12.3-1.10.1 libpoppler-qt4-3-0.12.3-1.3.1 libpoppler-qt4-3-0.12.3-1.8.1 libpoppler-qt4-devel-0.12.3-1.10.1 libpoppler5-0.12.3-1.10.1 libpoppler5-0.12.3-1.3.1 libpoppler5-0.12.3-1.8.1 poppler-tools-0.12.3-1.10.1 poppler-tools-0.12.3-1.3.1 poppler-tools-0.12.3-1.8.1 xpdf xpdf-tools-3.02-138.29.2 libpoppler-glib4-0.12.3-1.3.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA libpoppler-qt4-3-0.12.3-1.3.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA libpoppler5-0.12.3-1.3.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA poppler-tools-0.12.3-1.3.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA xpdf-tools-3.02-138.29.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA libpoppler-glib4-0.12.3-1.3.1 as a component of SUSE Linux Enterprise Server 11 SP2 libpoppler-qt4-3-0.12.3-1.3.1 as a component of SUSE Linux Enterprise Server 11 SP2 libpoppler5-0.12.3-1.3.1 as a component of SUSE Linux Enterprise Server 11 SP2 poppler-tools-0.12.3-1.3.1 as a component of SUSE Linux Enterprise Server 11 SP2 libpoppler-glib4-0.12.3-1.8.1 as a component of SUSE Linux Enterprise Server 11 SP3 libpoppler-qt4-3-0.12.3-1.8.1 as a component of SUSE Linux Enterprise Server 11 SP3 libpoppler5-0.12.3-1.8.1 as a component of SUSE Linux Enterprise Server 11 SP3 poppler-tools-0.12.3-1.8.1 as a component of SUSE Linux Enterprise Server 11 SP3 libpoppler-glib4-0.12.3-1.10.1 as a component of SUSE Linux Enterprise Server 11 SP4 libpoppler-qt4-3-0.12.3-1.10.1 as a component of SUSE Linux Enterprise Server 11 SP4 libpoppler5-0.12.3-1.10.1 as a component of SUSE Linux Enterprise Server 11 SP4 poppler-tools-0.12.3-1.10.1 as a component of SUSE Linux Enterprise Server 11 SP4 libpoppler-devel-0.12.3-1.10.1 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libpoppler-glib-devel-0.12.3-1.10.1 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libpoppler-qt2-0.12.3-1.10.1 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libpoppler-qt3-devel-0.12.3-1.10.1 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libpoppler-qt4-devel-0.12.3-1.10.1 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 poppler-tools-0.12.3-1.10.1 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 xpdf as a component of SUSE Linux Enterprise Server 11 SP1 for Teradata The PostScriptFunction::PostScriptFunction function in poppler/Function.cc in the PDF parser in poppler 0.8.7 and possibly other versions up to 0.15.1, and possibly other products, allows context-dependent attackers to cause a denial of service (crash) via a PDF file that triggers an uninitialized pointer dereference. CVE-2010-3703 SUSE Linux Enterprise Server 11 SP1-TERADATA:libpoppler-glib4-0.12.3-1.3.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:libpoppler-qt4-3-0.12.3-1.3.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:libpoppler5-0.12.3-1.3.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:poppler-tools-0.12.3-1.3.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:xpdf-tools-3.02-138.29.2 SUSE Linux Enterprise Server 11 SP2:libpoppler-glib4-0.12.3-1.3.1 SUSE Linux Enterprise Server 11 SP2:libpoppler-qt4-3-0.12.3-1.3.1 SUSE Linux Enterprise Server 11 SP2:libpoppler5-0.12.3-1.3.1 SUSE Linux Enterprise Server 11 SP2:poppler-tools-0.12.3-1.3.1 SUSE Linux Enterprise Server 11 SP3:libpoppler-glib4-0.12.3-1.8.1 SUSE Linux Enterprise Server 11 SP3:libpoppler-qt4-3-0.12.3-1.8.1 SUSE Linux Enterprise Server 11 SP3:libpoppler5-0.12.3-1.8.1 SUSE Linux Enterprise Server 11 SP3:poppler-tools-0.12.3-1.8.1 SUSE Linux Enterprise Server 11 SP4:libpoppler-glib4-0.12.3-1.10.1 SUSE Linux Enterprise Server 11 SP4:libpoppler-qt4-3-0.12.3-1.10.1 SUSE Linux Enterprise Server 11 SP4:libpoppler5-0.12.3-1.10.1 SUSE Linux Enterprise Server 11 SP4:poppler-tools-0.12.3-1.10.1 SUSE Linux Enterprise Software Development Kit 11 SP4:libpoppler-devel-0.12.3-1.10.1 SUSE Linux Enterprise Software Development Kit 11 SP4:libpoppler-glib-devel-0.12.3-1.10.1 SUSE Linux Enterprise Software Development Kit 11 SP4:libpoppler-qt2-0.12.3-1.10.1 SUSE Linux Enterprise Software Development Kit 11 SP4:libpoppler-qt3-devel-0.12.3-1.10.1 SUSE Linux Enterprise Software Development Kit 11 SP4:libpoppler-qt4-devel-0.12.3-1.10.1 SUSE Linux Enterprise Software Development Kit 11 SP4:poppler-tools-0.12.3-1.10.1 SUSE Linux Enterprise Server 11 SP1 for Teradata:xpdf moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P