blob: 0828e25e5fe8cc9ef7daa406e31be56503978ebf [file] [log] [blame]
<?xml version="1.0" encoding="utf-8"?>
<glsa id="200508-11">
<title>Adobe Reader: Buffer Overflow</title>
Adobe Reader is vulnerable to a buffer overflow which could potentially
lead to execution of arbitrary code.
<product type="ebuild">acroread</product>
<announced>August 19, 2005</announced>
<revised>August 19, 2005: 01</revised>
<package name="app-text/acroread" auto="yes" arch="*">
<unaffected range="ge"></unaffected>
<vulnerable range="lt"></vulnerable>
Adobe Reader is a utility used to view PDF files.
A buffer overflow has been reported within a core application
plug-in, which is part of Adobe Reader.
<impact type="normal">
An attacker may create a specially-crafted PDF file, enticing a
user to open it. This could trigger a buffer overflow as the file is
being loaded, resulting in the execution of arbitrary code.
There is no known workaround at this time.
All Adobe Reader users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose &quot;&gt;=app-text/acroread-;</code>
<uri link="">CAN-2005-2470</uri>
<uri link="">Adobe Document 321644</uri>
<metadata tag="requester" timestamp="Tue, 16 Aug 2005 23:13:16 +0000">
<metadata tag="bugReady" timestamp="Wed, 17 Aug 2005 16:19:50 +0000">
<metadata tag="submitter" timestamp="Wed, 17 Aug 2005 16:52:49 +0000">