CVE-2006-0301 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2006-0301 Interim 1 6 2025-11-05T06:28:24Z current 2021-05-30T12:34:48Z 2025-11-05T06:28:24Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2006-0301 Heap-based buffer overflow in Splash.cc in xpdf, as used in other products such as (1) poppler, (2) kdegraphics, (3) gpdf, (4) pdfkit.framework, and others, allows attackers to cause a denial of service and possibly execute arbitrary code via crafted splash images that produce certain values that exceed the width or height of the associated bitmap. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Server 16.0 openSUSE Tumbleweed libpoppler-cpp0-21.08.0-1.3 libpoppler-cpp0-32bit-21.08.0-1.3 libpoppler-cpp2-25.04.0-160000.2.2 libpoppler-devel-21.08.0-1.3 libpoppler-devel-25.04.0-160000.2.2 libpoppler-glib-devel-21.08.0-1.3 libpoppler-glib8-21.08.0-1.3 libpoppler-glib8-25.04.0-160000.2.2 libpoppler-glib8-32bit-21.08.0-1.3 libpoppler-qt6-3-25.04.0-160000.2.2 libpoppler-qt6-devel-25.04.0-160000.2.2 libpoppler112-21.08.0-1.3 libpoppler112-32bit-21.08.0-1.3 libpoppler148-25.04.0-160000.2.2 poppler-tools-21.08.0-1.3 poppler-tools-25.04.0-160000.2.2 typelib-1_0-Poppler-0_18-21.08.0-1.3 typelib-1_0-Poppler-0_18-25.04.0-160000.2.2 libpoppler-cpp2-25.04.0-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 libpoppler-devel-25.04.0-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 libpoppler-glib8-25.04.0-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 libpoppler-qt6-3-25.04.0-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 libpoppler-qt6-devel-25.04.0-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 libpoppler148-25.04.0-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 poppler-tools-25.04.0-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 typelib-1_0-Poppler-0_18-25.04.0-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 libpoppler-cpp0-21.08.0-1.3 as a component of openSUSE Tumbleweed libpoppler-cpp0-32bit-21.08.0-1.3 as a component of openSUSE Tumbleweed libpoppler-devel-21.08.0-1.3 as a component of openSUSE Tumbleweed libpoppler-glib-devel-21.08.0-1.3 as a component of openSUSE Tumbleweed libpoppler-glib8-21.08.0-1.3 as a component of openSUSE Tumbleweed libpoppler-glib8-32bit-21.08.0-1.3 as a component of openSUSE Tumbleweed libpoppler112-21.08.0-1.3 as a component of openSUSE Tumbleweed libpoppler112-32bit-21.08.0-1.3 as a component of openSUSE Tumbleweed poppler-tools-21.08.0-1.3 as a component of openSUSE Tumbleweed typelib-1_0-Poppler-0_18-21.08.0-1.3 as a component of openSUSE Tumbleweed Heap-based buffer overflow in Splash.cc in xpdf, as used in other products such as (1) poppler, (2) kdegraphics, (3) gpdf, (4) pdfkit.framework, and others, allows attackers to cause a denial of service and possibly execute arbitrary code via crafted splash images that produce certain values that exceed the width or height of the associated bitmap. CVE-2006-0301 SUSE Linux Enterprise Server 16.0:libpoppler-cpp2-25.04.0-160000.2.2 SUSE Linux Enterprise Server 16.0:libpoppler-devel-25.04.0-160000.2.2 SUSE Linux Enterprise Server 16.0:libpoppler-glib8-25.04.0-160000.2.2 SUSE Linux Enterprise Server 16.0:libpoppler-qt6-3-25.04.0-160000.2.2 SUSE Linux Enterprise Server 16.0:libpoppler-qt6-devel-25.04.0-160000.2.2 SUSE Linux Enterprise Server 16.0:libpoppler148-25.04.0-160000.2.2 SUSE Linux Enterprise Server 16.0:poppler-tools-25.04.0-160000.2.2 SUSE Linux Enterprise Server 16.0:typelib-1_0-Poppler-0_18-25.04.0-160000.2.2 openSUSE Tumbleweed:libpoppler-cpp0-21.08.0-1.3 openSUSE Tumbleweed:libpoppler-cpp0-32bit-21.08.0-1.3 openSUSE Tumbleweed:libpoppler-devel-21.08.0-1.3 openSUSE Tumbleweed:libpoppler-glib-devel-21.08.0-1.3 openSUSE Tumbleweed:libpoppler-glib8-21.08.0-1.3 openSUSE Tumbleweed:libpoppler-glib8-32bit-21.08.0-1.3 openSUSE Tumbleweed:libpoppler112-21.08.0-1.3 openSUSE Tumbleweed:libpoppler112-32bit-21.08.0-1.3 openSUSE Tumbleweed:poppler-tools-21.08.0-1.3 openSUSE Tumbleweed:typelib-1_0-Poppler-0_18-21.08.0-1.3 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P