Gentoo Linux Security Advisory GLSA 200904-07 – A vulnerability in Xpdf might allow local attackers to execute arbitrary code. Erik Wallin reported that Gentoo’s Xpdf attempts to read the xpdfrc file from the current working directory if it cannot find a .xpdfrc file in the user’s home directory. This is caused by a missing definition of the SYSTEM_XPDFRC macro when compiling a repackaged version of Xpdf. Versions less than 3.02-r2 are affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/76401/glsa-200904-07.txt
Source: https://packetstormsecurity.com/files/76401/Gentoo-Linux-Security-Advisory-200904-7.html