Note:
This project will be discontinued after December 13, 2021. [more]
2019-07-15
Evince 3.26.0 is affected by buffer overflow. The impact is: DOS / Possible code execution. The component is: backend/tiff/tiff-document.c. The attack vector is: Victim must open a crafted PDF file. The issue occurs because of an incorrect integer overflow protection mechanism in tiff_document_render and tiff_document_get_thumbnail.
Products | Ubuntu_linux, Debian_linux, Evince, Leap |
Type | Out-of-bounds Write (CWE-787) Integer Overflow or Wraparound (CWE-190) |
First patch | - None (likely due to unavailable code) |
Links |
• http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00046.html
• http://bugzilla.maptools.org/show_bug.cgi?id=2745 • https://lists.debian.org/debian-lts-announce/2019/08/msg00014.html • https://www.debian.org/security/2020/dsa-4624 • https://bugzilla.gnome.org/show_bug.cgi?id=788980 |