suse · CVE-2005-3626

Quick triage

Priority: medium Published: 2021-05-30 12:34:07 UTC Updated: 2026-04-18 20:42:33 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2005-3626 severity moderate: SUSE including 15 source package names (cups-2.4.11-160000.2.2, cups-client-2.4.11-160000.2.2, …), 15 product×package rows across 4 product lines (SUSE Linux Enterprise Module for Legacy 12, SUSE Linux Enterprise Server 16.0, SUSE Linux Micro 6.0, SUSE Linux Micro 6.1): Fixed 11, Known Not Affected 4.

Description:

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference.

cvelogic Threat Intelligence