Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-2640HistoryJan 07, 2011 - 7:00 p.m.
CVE-2010-2640
2011-01-0719:00:17
Debian Security Bug Tracker
security-tracker.debian.org
12
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.062 Low
EPSS
Percentile
93.6%
Array index error in the PK font parser in the dvi-backend component in Evince 2.32 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font in conjunction with a DVI file that is processed by the thumbnailer.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | evince | < 2.30.3-2 | evince_2.30.3-2_all.deb |
| Debian | 11 | all | evince | < 2.30.3-2 | evince_2.30.3-2_all.deb |
| Debian | 999 | all | evince | < 2.30.3-2 | evince_2.30.3-2_all.deb |
| Debian | 13 | all | evince | < 2.30.3-2 | evince_2.30.3-2_all.deb |
Related
nvd
nvd
CVE-2010-2640
2011-01-07 19:00:17
cve
cve
CVE-2010-2640
2011-01-07 19:00:17
prion
prion
Design/Logic Flaw
2011-01-07 19:00:00
ubuntucve
ubuntucve
CVE-2010-2640
2011-01-05 00:00:00
cvelist
cvelist
CVE-2010-2640
2011-01-07 18:00:00
nessus
nessus
Debian DSA-2357-1 : evince - several vulnerabilities
2011-12-05 00:00:00
Mandriva Linux Security Advisory : evince (MDVSA-2011:005)
2011-01-28 00:00:00
SuSE 10 Security Update : evince (ZYPP Patch Number 7309)
2011-01-21 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201111-10 (evince)
2012-02-12 00:00:00
RedHat Update for evince RHSA-2011:0009-01
2012-06-05 00:00:00
Mandriva Update for evince MDVSA-2011:005 (evince)
2011-01-14 00:00:00
redhat
redhat
(RHSA-2011:0009) Moderate: evince security update
2011-01-06 00:00:00
ubuntu
ubuntu
Evince vulnerabilities
2011-01-05 00:00:00
oraclelinux
oraclelinux
evince security update
2011-02-10 00:00:00
securityvulns
securityvulns
[USN-1035-1] Evince vulnerabilities
2011-01-07 00:00:00
evince buffer overflows
2011-01-07 00:00:00
gentoo
gentoo
Evince: Multiple vulnerabilities
2011-11-20 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: evince-2.32.0-3.fc14
2011-01-08 21:26:09
[SECURITY] Fedora 13 Update: evince-2.30.3-2.fc13
2011-01-12 05:23:01
osv
osv
evince - several
2011-12-03 00:00:00
debian
debian
[SECURITY] [DSA 2357-1] evince security update
2011-12-04 10:54:13
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.062 Low
EPSS
Percentile
93.6%
Related for DEBIANCVE:CVE-2010-2640