suse · CVE-2005-3628

Quick triage

Priority: high Published: 2021-05-30 12:34:07 UTC Updated: 2026-04-18 20:42:31 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2005-3628 severity important: SUSE including 25 source package names (cups-2.3.3op2-4.2, cups-2.4.11-160000.2.2, …), 25 product×package rows across 5 product lines (SUSE Linux Enterprise Module for Legacy 12, SUSE Linux Enterprise Server 16.0, … (5 product lines)): Fixed 21, Known Not Affected 4.

Description:

Buffer overflow in the JBIG2Bitmap::JBIG2Bitmap function in JBIG2Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via unknown attack vectors.

cvelogic Threat Intelligence