Novell Home

CVE-2008-2992

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2008-2992 at MITRE

Description

Stack-based buffer overflow in Adobe Acrobat and Reader 8.1.2 and earlier allows remote attackers to execute arbitrary code via a PDF file that calls the util.printf JavaScript function with a crafted format string argument, a related issue to CVE-2008-1104.

NVD CVSS v2 Base Score: 9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C)

Novell/SUSE information

Novell Bugzilla entry: 441739

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Desktop 10 SP1 for AMD64 and Intel EM64T
SUSE Linux Enterprise Desktop 10 SP1 for x86
SUSE Linux Enterprise Desktop 10 SP2 for AMD64 and Intel EM64T
SUSE Linux Enterprise Desktop 10 SP2 for x86
  • acroread >= 8.1.3-1.1
sled10.x86
sled10.x86-64
sled10-sp2.x86
sled10-sp2.x86-64
ZYPP Patch Nr: 5746
openSUSE 10.2
openSUSE 10.3
  • acroread >= 8.1.3-1.1

© 2012 Novell