CVE-2007-3387

N/A Unknown
Published: July 30, 2007 Modified: April 23, 2026
View on NVD

Description

Integer overflow in the StreamPredictor::StreamPredictor function in xpdf 3.02, as used in (1) poppler before 0.5.91, (2) gpdf before 2.8.2, (3) kpdf, (4) kdegraphics, (5) CUPS, (6) PDFedit, and other products, might allow remote attackers to execute arbitrary code via a crafted PDF file that triggers a stack-based buffer overflow in the StreamPredictor::getNextLine function.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl1.patch
Source: secalert@redhat.com
Broken Link
ftp://patches.sgi.com/support/free/security/advisories/20070801-01-P.asc
Source: secalert@redhat.com
Broken Link
http://bugs.gentoo.org/show_bug.cgi?id=187139
Source: secalert@redhat.com
Issue Tracking Third Party Advisory
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=248194
Source: secalert@redhat.com
Issue Tracking Third Party Advisory
http://osvdb.org/40127
Source: secalert@redhat.com
Broken Link
http://secunia.com/advisories/26188
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26251
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26254
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26255
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26257
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26278
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26281
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26283
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26292
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26293
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26297
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26307
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26318
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26325
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26342
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26343
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26358
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26365
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26370
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26395
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26403
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26405
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26407
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26410
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26413
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26425
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26432
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26436
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26467
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26468
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26470
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26514
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26607
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26627
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26862
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/26982
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/27156
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/27281
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/27308
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/27637
Source: secalert@redhat.com
Third Party Advisory
http://secunia.com/advisories/30168
Source: secalert@redhat.com
Third Party Advisory
http://security.gentoo.org/glsa/glsa-200709-12.xml
Source: secalert@redhat.com
Third Party Advisory
http://security.gentoo.org/glsa/glsa-200709-17.xml
Source: secalert@redhat.com
Third Party Advisory
http://security.gentoo.org/glsa/glsa-200710-20.xml
Source: secalert@redhat.com
Third Party Advisory
http://security.gentoo.org/glsa/glsa-200711-34.xml
Source: secalert@redhat.com
Third Party Advisory
http://security.gentoo.org/glsa/glsa-200805-13.xml
Source: secalert@redhat.com
Third Party Advisory
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.761882
Source: secalert@redhat.com
Third Party Advisory
http://sourceforge.net/project/shownotes.php?release_id=535497
Source: secalert@redhat.com
Broken Link
http://support.avaya.com/elmodocs2/security/ASA-2007-401.htm
Source: secalert@redhat.com
Third Party Advisory
http://www.debian.org/security/2007/dsa-1347
Source: secalert@redhat.com
Third Party Advisory
http://www.debian.org/security/2007/dsa-1348
Source: secalert@redhat.com
Third Party Advisory
http://www.debian.org/security/2007/dsa-1349
Source: secalert@redhat.com
Third Party Advisory
http://www.debian.org/security/2007/dsa-1350
Source: secalert@redhat.com
Third Party Advisory
http://www.debian.org/security/2007/dsa-1352
Source: secalert@redhat.com
Third Party Advisory
http://www.debian.org/security/2007/dsa-1354
Source: secalert@redhat.com
Third Party Advisory
http://www.debian.org/security/2007/dsa-1355
Source: secalert@redhat.com
Third Party Advisory
http://www.debian.org/security/2007/dsa-1357
Source: secalert@redhat.com
Third Party Advisory
http://www.gentoo.org/security/en/glsa/glsa-200710-08.xml
Source: secalert@redhat.com
Third Party Advisory
http://www.kde.org/info/security/advisory-20070730-1.txt
Source: secalert@redhat.com
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:158
Source: secalert@redhat.com
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:159
Source: secalert@redhat.com
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:160
Source: secalert@redhat.com
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:161
Source: secalert@redhat.com
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:162
Source: secalert@redhat.com
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:163
Source: secalert@redhat.com
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:164
Source: secalert@redhat.com
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:165
Source: secalert@redhat.com
Third Party Advisory
http://www.novell.com/linux/security/advisories/2007_15_sr.html
Source: secalert@redhat.com
Broken Link
http://www.novell.com/linux/security/advisories/2007_16_sr.html
Source: secalert@redhat.com
Broken Link
http://www.redhat.com/support/errata/RHSA-2007-0720.html
Source: secalert@redhat.com
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2007-0729.html
Source: secalert@redhat.com
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2007-0730.html
Source: secalert@redhat.com
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2007-0731.html
Source: secalert@redhat.com
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2007-0732.html
Source: secalert@redhat.com
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2007-0735.html
Source: secalert@redhat.com
Third Party Advisory
http://www.securityfocus.com/archive/1/476508/100/0/threaded
Source: secalert@redhat.com
Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/476519/30/5400/threaded
Source: secalert@redhat.com
Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/476765/30/5340/threaded
Source: secalert@redhat.com
Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/25124
Source: secalert@redhat.com
Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1018473
Source: secalert@redhat.com
Third Party Advisory VDB Entry
http://www.slackware.org/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.423670
Source: secalert@redhat.com
Third Party Advisory
http://www.ubuntu.com/usn/usn-496-1
Source: secalert@redhat.com
Third Party Advisory
http://www.ubuntu.com/usn/usn-496-2
Source: secalert@redhat.com
Third Party Advisory
http://www.vupen.com/english/advisories/2007/2704
Source: secalert@redhat.com
Permissions Required Third Party Advisory
http://www.vupen.com/english/advisories/2007/2705
Source: secalert@redhat.com
Permissions Required Third Party Advisory
https://issues.foresightlinux.org/browse/FL-471
Source: secalert@redhat.com
Broken Link
https://issues.rpath.com/browse/RPL-1596
Source: secalert@redhat.com
Broken Link
https://issues.rpath.com/browse/RPL-1604
Source: secalert@redhat.com
Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11149
Source: secalert@redhat.com
Third Party Advisory
ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl1.patch
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
ftp://patches.sgi.com/support/free/security/advisories/20070801-01-P.asc
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://bugs.gentoo.org/show_bug.cgi?id=187139
Source: af854a3a-2127-422b-91ae-364da2661108
Issue Tracking Third Party Advisory
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=248194
Source: af854a3a-2127-422b-91ae-364da2661108
Issue Tracking Third Party Advisory
http://osvdb.org/40127
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://secunia.com/advisories/26188
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26251
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26254
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26255
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26257
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26278
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26281
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26283
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26292
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26293
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26297
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26307
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26318
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26325
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26342
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26343
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26358
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26365
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26370
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26395
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26403
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26405
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26407
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26410
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26413
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26425
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26432
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26436
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26467
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26468
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26470
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26514
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26607
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26627
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26862
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/26982
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/27156
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/27281
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/27308
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/27637
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/30168
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://security.gentoo.org/glsa/glsa-200709-12.xml
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://security.gentoo.org/glsa/glsa-200709-17.xml
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://security.gentoo.org/glsa/glsa-200710-20.xml
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://security.gentoo.org/glsa/glsa-200711-34.xml
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://security.gentoo.org/glsa/glsa-200805-13.xml
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.761882
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://sourceforge.net/project/shownotes.php?release_id=535497
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://support.avaya.com/elmodocs2/security/ASA-2007-401.htm
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.debian.org/security/2007/dsa-1347
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.debian.org/security/2007/dsa-1348
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.debian.org/security/2007/dsa-1349
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.debian.org/security/2007/dsa-1350
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.debian.org/security/2007/dsa-1352
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.debian.org/security/2007/dsa-1354
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.debian.org/security/2007/dsa-1355
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.debian.org/security/2007/dsa-1357
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.gentoo.org/security/en/glsa/glsa-200710-08.xml
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.kde.org/info/security/advisory-20070730-1.txt
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:158
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:159
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:160
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:161
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:162
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:163
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:164
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:165
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.novell.com/linux/security/advisories/2007_15_sr.html
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://www.novell.com/linux/security/advisories/2007_16_sr.html
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://www.redhat.com/support/errata/RHSA-2007-0720.html
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2007-0729.html
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2007-0730.html
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2007-0731.html
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2007-0732.html
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2007-0735.html
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.securityfocus.com/archive/1/476508/100/0/threaded
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/476519/30/5400/threaded
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/476765/30/5340/threaded
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/25124
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1018473
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory VDB Entry
http://www.slackware.org/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.423670
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.ubuntu.com/usn/usn-496-1
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.ubuntu.com/usn/usn-496-2
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.vupen.com/english/advisories/2007/2704
Source: af854a3a-2127-422b-91ae-364da2661108
Permissions Required Third Party Advisory
http://www.vupen.com/english/advisories/2007/2705
Source: af854a3a-2127-422b-91ae-364da2661108
Permissions Required Third Party Advisory
https://issues.foresightlinux.org/browse/FL-471
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
https://issues.rpath.com/browse/RPL-1596
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
https://issues.rpath.com/browse/RPL-1604
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11149
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory

188 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
10.7%
93th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-190

Affected Vendors

freedesktop xpdfreader apple debian gpdf_project canonical

Related CVEs

CVE-2026-8725 7.3
CVE-2026-8724 4.7
CVE-2026-8723 5.3
CVE-2026-6050 N/A
CVE-2026-46728 8.2