Debian: Security Advisory (DSA-1243-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SuSE 10 Security Update : gv (ZYPP Patch Number 2267)

A stackoverflow in the postscript viewer gv could be used to exploited to execute code, if the user could be tricked into viewing a prepared postscript file. CVE-2006-5864 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

[SECURITY] Fedora 7 Update: kdegraphics-3.5.8-7.fc7

Graphics applications for the K Desktop Environment, including kamera digital camera support kcoloredit palette editor and color chooser kdvi displays TeX .dvi files kghostview displays postscript files kiconedit icon editor kooka scanner application kpdf displays PDF files kruler screen ruler an...

Ubuntu 6.06 LTS / 6.10 : evince-gtk vulnerability (USN-390-3)

USN-390-2 fixed vulnerabilities in evince. This update provides the corresponding update for evince-gtk. A buffer overflow was discovered in the PostScript processor included in evince. By tricking a user into opening a specially crafted PS file, an attacker could crash evince or execute arbitrar...

Ubuntu 5.10 / 6.06 LTS / 6.10 : evince vulnerability (USN-390-2)

USN-390-1 fixed a vulnerability in evince. The original fix did not fully solve the problem, allowing for a denial of service in certain situations. A buffer overflow was discovered in the PostScript processor included in evince. By tricking a user into opening a specially crafted PS file, an...

Ubuntu 5.10 / 6.06 LTS / 6.10 : evince vulnerability (USN-390-1)

A buffer overflow was discovered in the PostScript processor included in evince. By tricking a user into opening a specially crafted PS file, an attacker could crash evince or execute arbitrary code with the user's privileges. Note that Tenable Network Security has extracted the preceding...

openSUSE 10 Security Update : evince (evince-2362)

Specially crafted Postscript files could be used to execute arbitrary code by causing a buffer overflow in evince CVE-2006-5864. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update evince-2362. Th...

openSUSE 10 Security Update : fbi (fbi-1915)

The fbgs program did not activate security options in the postscript interpreter due to a typo CVE-2006-3119. fbgs also used a temporary directory with predictable name CVE-2006-1695. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

openSUSE 10 Security Update : gv (gv-2266)

A stackoverflow in the postscript viewer gv could be used to exploited to execute code, if the user could be tricked into viewing a prepared postscript file. CVE-2006-5864 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted fr...

[SECURITY] Fedora Core 6 Update: kdegraphics-3.5.7-1.fc6.1

Graphics applications for the K Desktop Environment. Includes: kdvi displays TeX .dvi files kghostview displays postscript files kcoloredit palette editor and color chooser kiconedit icon editor kolourpaint a simple drawing program ksnapshot screen capture utility kview image viewer for GIF, JPEG...

[SECURITY] Fedora 7 Update: kdegraphics-3.5.7-2.fc7

Graphics applications for the K Desktop Environment, including kamera digital camera support kcoloredit palette editor and color chooser kdvi displays TeX .dvi files kghostview displays postscript files kiconedit icon editor kooka scanner application kpdf displays PDF files kruler screen ruler an...

Authentication flaw

The Scheduler Service VxSchedService.exe in Symantec Storage Foundation for Windows 5.0 allows remote attackers to bypass authentication and execute arbitrary code via certain requests to the service socket that create 1 PreScript or 2 PostScript registry values under...

GLSA-200704-06 : Evince: Stack overflow in included gv code

The remote host is affected by the vulnerability described in GLSA-200704-06 Evince: Stack overflow in included gv code Evince includes code from GNU gv that does not properly boundary check user-supplied data before copying it into process buffers. Impact : An attacker could entice a user to ope...

Evince: Stack overflow in included gv code

Background Evince is a document viewer for multiple document formats, including PostScript. Description Evince includes code from GNU gv that does not properly boundary check user-supplied data before copying it into process buffers. Impact An attacker could entice a user to open a specially...

GLSA-200703-24 : mgv: Stack overflow in included gv code

The remote host is affected by the vulnerability described in GLSA-200703-24 mgv: Stack overflow in included gv code mgv includes code from gv that does not properly boundary check user-supplied data before copying it into process buffers. Impact : An attacker could entice a user to open a...

mgv: Stack overflow in included gv code

Background mgv is a Postscript viewer with a Motif interface, based on Ghostview and GNU gv. Description mgv includes code from gv that does not properly boundary check user-supplied data before copying it into process buffers. Impact An attacker could entice a user to open a specially crafted...

Mandrake Linux Security Advisory : evince (MDKSA-2006:229)

Stack-based buffer overflow in ps.c for evince allows user-assisted attackers to execute arbitrary code via a PostScript PS file with certain headers that contain long comments, as demonstrated using the DocumentMedia header. Packages have been patched to correct this issue. %NASLMINLEVEL 70300 C...

Mandrake Linux Security Advisory : gv (MDKSA-2006:214-1)

Stack-based buffer overflow in the psgettext function in ps.c for GNU gv 3.6.2, and possibly earlier versions, allows user-assisted attackers to execute arbitrary code via a PostScript PS file with certain headers that contain long comments, as demonstrated using the DocumentMedia header. Package...

DSA-1243-1 evince

Bulletin has no description...

USN-390-3: evince-gtk vulnerability

USN-390-2 fixed vulnerabilities in evince. This update provides the corresponding update for evince-gtk. Original advisory details: A buffer overflow was discovered in the PostScript processor included in evince. By tricking a user into opening a specially crafted PS file, an attacker could crash...