CVE-2011-2433
SUSE Linux Enterprise Desktop 10 SP4 for AMD64 and Intel EM64T,SUSE Linux Enterprise Desktop 10 SP4 for x86,SUSE Linux Enterprise Desktop 11 SP1,openSUSE 11.3,openSUSE 11.4
CVE-2011-2433, security advisory, novell, suse linux, suse, security, cve

CVE-2011-2433

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2011-2433 at MITRE

Description

Heap-based buffer overflow in Adobe Reader and Acrobat 8.x before 8.3.1, 9.x before 9.4.6, and 10.x before 10.1.1 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2011-2434 and CVE-2011-2437.

SUSE information

CVSS v2 Scores
  National Vulnerability Database
Base Score 9.33
Vector AV:N/AC:M/Au:N/C:C/I:C/A:C
Access Vector Network
Access Complexity Medium
Authentication None
Confidentiality Impact Complete
Integrity Impact Complete
Availability Impact Complete
SUSE Bugzilla entry: 717724 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Desktop 11 SP1
  • acroread >= 9.4.6-0.2.1
  • acroread-cmaps >= 9.4.6-0.2.1
  • acroread-fonts-ja >= 9.4.6-0.2.1
  • acroread-fonts-ko >= 9.4.6-0.2.1
  • acroread-fonts-zh_CN >= 9.4.6-0.2.1
  • acroread-fonts-zh_TW >= 9.4.6-0.2.1
Builds
SAT Patch Nr: 5412
openSUSE 11.3
  • acroread >= 9.4.6-0.2.1
openSUSE 11.4
  • acroread >= 9.4.6-0.5.1
SUSE Linux Enterprise Desktop 10 SP4 for AMD64 and Intel EM64T
SUSE Linux Enterprise Desktop 10 SP4 for x86
  • acroread >= 9.4.6-0.5.1
  • acroread-cmaps >= 9.4.6-0.5.1
  • acroread-fonts-ja >= 9.4.6-0.5.1
  • acroread-fonts-ko >= 9.4.6-0.5.1
  • acroread-fonts-zh_CN >= 9.4.6-0.5.1
  • acroread-fonts-zh_TW >= 9.4.6-0.5.1
Builds
ZYPP Patch Nr: 7833
openSUSE 11.4
  • acroread >= 9.4.6-0.5.1
Patchnames:
acroread