Gentoo Linux: pdf2html Vulnerabilities in included Xpdf (GLSA 200501-13) Key Information Release Date: January 10, 2005 Severity: Normal Exploitable: Remote Affected Packages Package: app-text/pdf2html on all architectures Affected Versions: = 0.36-r2 Description Background: pdf2html is a utility to convert PDF files to HTML or XML formats, using Xpdf code to decode PDF files. Vulnerability: Xpdf is vulnerable to integer overflows, as described in GLSA 200412-24. Impact An attacker could entice a user to convert a specially-crafted PDF file, potentially leading to the execution of arbitrary code with the rights of the user running pdf2html. Resolution All pdf2html users should upgrade to the latest version using the following commands: References GLSA 200412-24 CAN-2004-1125