Launchpad.net

CVE 2009-1856

Integer overflow in Adobe Reader 7 and Acrobat 7 before 7.1.3, Adobe Reader 8 and Acrobat 8 before 8.1.6, and Adobe Reader 9 and Acrobat 9 before 9.1.2 allows attackers to cause a denial of service or possibly execute arbitrary code via a PDF file containing unspecified parameters to the FlateDecode filter, which triggers a heap-based buffer overflow.

Related bugs and status

CVE-2009-1856 (Candidate) is related to these bugs:

Bug #385414: APSB09-07 update to Adobe Reader 9.1.2

Summary				In	Importance	Status
	385414	APSB09-07 update to Adobe Reader 9.1.2		Ubuntu Japanese Kaizen Project	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

IDEFENSE: 20090609 Adobe Reader ...
CONFIRM: http://www.adobe.com/s...
BID: 35274
BID: 35294
SECTRACK: 1022361
SECUNIA: 34580
VUPEN: ADV-2009-1547
CERT: TA09-161A
REDHAT: RHSA-2009:1109
SECUNIA: 35496
SUSE: SUSE-SR:2009:012
SECUNIA: 35655
SECUNIA: 35685
SECUNIA: 35734
GENTOO: GLSA-200907-06
SUSE: SUSE-SA:2009:035
XF: acrobat-reader-unspeci...