CVE-2005-0206

Description

The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.

How to fix CVE-2005-0206

To remediate CVE-2005-0206, upgrade the affected package to a fixed version below.

• Debian/cups—upgrade to 1.1.22-7 or later

Is CVE-2005-0206 being exploited?

Moderate — EPSS is 6.5%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (1)

• from 0, < 1.1.22-7

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2005-0206