Secunia Research has discovered a vulnerability in Xpdf, which can be exploited by malicious people to potentially compromise a user’s system. The vulnerability is caused due to a boundary error while decoding JBIG2 symbol dictionary segments. This can be exploited to cause a heap-based buffer overflow via a specially crafted PDF file. Successful exploitation may allow execution of arbitrary code. Xpdf version 3.02pl2 is affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/76775/secunia-xpdfjbig2.txt
Source: https://packetstormsecurity.com/files/76775/Xpdf-JBIG2-Symbol-Dictionary-Buffer-Overflow.html