===========================================================
Ubuntu Security Notice USN-1035-1 January 05, 2011
evince vulnerabilities
CVE-2010-2640, CVE-2010-2641, CVE-2010-2642, CVE-2010-2643
===========================================================
A security issue affects the following Ubuntu releases:
Ubuntu 8.04 LTS
Ubuntu 9.10
Mandriva Linux Security Advisory MDVSA-2011:005
http://www.mandriva.com/security/
_______________________________________________________________________
Package : evince
Date : January 13, 2011
Affected: 2010.0, 2010.1, Enterprise Server 5.0
_______________________________________________________________________
Problem Description:
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Evince: Multiple vulnerabilities
Date: November 20, 2011
Bugs: #350681, #363447
ID: 201111-10
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Impact
======
By enticing a user to view a specially crafted program with a
Poppler-based PDF viewer such as Gentoo's Xpdf, Epdfview, or Evince, a
remote attacker could cause an overflow, potentially resulting in the
execution of arbitrary code with the privileges of the user running the
application.
Workaround
First reason you can analyse in advisory but what about others? Vulnerable
is:
*) xpdf
*) libpoppler (so it implies vulnerability in for example evince software
– default pdf reader in Fedora Linux – I made PoC for this
software).
*) Adobe Acrobat Reader ONLY for Linux (versions up to 9.1.1 – 9.1.2
and 9.1.3 aren’t vuln)
Impact
======
By enticing a user to view or process a specially crafted PDF file with
KWord or KPDF or a Poppler-based program such as Gentoo's viewers Xpdf,
ePDFView, and Evince or the CUPS printing system, a remote attacker
could cause an overflow, potentially resulting in the execution of
arbitrary code with the privileges of the user running the application.
Workaround
==========
Impact
======
A remote attacker could entice a user to open a specially crafted PDF
file with a Poppler-based PDF viewer such as Gentoo's Xpdf, Epdfview,
or Evince, potentially resulting in the execution of arbitrary code
with the privileges of the user running the application.
Workaround
==========
_______________________________________________________________________
Problem Description:
It was discovered that tetex suffered from the same vulnerability as
previousely addressed in Evince with MDVSA-2011:005 (CVE-2010-2642). As
a precaution tetex has been patched to address this flaw.
Packages for 2009.0 are provided as of the Extended Maintenance
Program. Please visit this link to learn more:
http://store.mandriva.com/product_info.php?cPath=149&products_id=490
_______________________________________________________________________
Problem Description:
It was discovered that t1lib suffered from the same vulnerability as
previousely addressed in Evince with MDVSA-2011:005 (CVE-2010-2642). As
a precaution t1lib has been patched to address this flaw.
Packages for 2009.0 are provided as of the Extended Maintenance
Program. Please visit this link to learn more:
http://store.mandriva.com/product_info.php?cPath=149&products_id=490
Impact
======
A remote attacker could entice a user to open a specially crafted PDF
file with a Poppler-based PDF viewer such as Gentoo's Xpdf, Epdfview,
or Evince, potentially resulting in the execution of arbitrary code
with the privileges of the user running the application.
Workaround
==========
