Lucene search
UbuntuUSN-1347-1HistoryJan 25, 2012 - 12:00 a.m.
Evince vulnerability
2012-01-2500:00:00
ubuntu.com
31
Releases
- Ubuntu 11.04
- Ubuntu 10.10
- Ubuntu 10.04
Packages
- evince - Document viewer
Details
It was discovered that Evince did not properly parse AFM font files when
processing DVI files. If a user were tricked into opening a specially
crafted DVI file, an attacker could cause Evince to crash or potentially
execute arbitrary code with the privileges of the user invoking the
program.
In the default installation, attackers would be isolated by the Evince
AppArmor profile.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 11.04 | noarch | libevdocument3 | < 2.32.0-0ubuntu12.4 | UNKNOWN |
| Ubuntu | 11.04 | noarch | evince | < 2.32.0-0ubuntu12.4 | UNKNOWN |
| Ubuntu | 11.04 | noarch | evince-dbg | < 2.32.0-0ubuntu12.4 | UNKNOWN |
| Ubuntu | 11.04 | noarch | evince-gtk | < 2.32.0-0ubuntu12.4 | UNKNOWN |
| Ubuntu | 11.04 | noarch | gir1.2-evince-2.32 | < 2.32.0-0ubuntu12.4 | UNKNOWN |
| Ubuntu | 11.04 | noarch | libevdocument-dev | < 2.32.0-0ubuntu12.4 | UNKNOWN |
| Ubuntu | 11.04 | noarch | libevview-dev | < 2.32.0-0ubuntu12.4 | UNKNOWN |
| Ubuntu | 11.04 | noarch | libevview3 | < 2.32.0-0ubuntu12.4 | UNKNOWN |
| Ubuntu | 10.10 | noarch | libevdocument3 | < 2.32.0-0ubuntu1.2 | UNKNOWN |
| Ubuntu | 10.10 | noarch | evince | < 2.32.0-0ubuntu1.2 | UNKNOWN |
References
Related
nessus
nessus
Ubuntu 10.04 LTS / 10.10 / 11.04 : evince vulnerability (USN-1347-1)
2012-01-26 00:00:00
SuSE 10 Security Update : evince (ZYPP Patch Number 7346)
2011-04-04 00:00:00
SuSE 10 Security Update : evince (ZYPP Patch Number 7409)
2011-12-13 00:00:00
openvas
openvas
Ubuntu Update for evince USN-1347-1
2012-02-01 00:00:00
Ubuntu: Security Advisory (USN-1347-1)
2012-02-01 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:0744-1)
2021-06-09 00:00:00
cve
cve
CVE-2011-0433
2012-11-19 12:10:48
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:07:01
cbl_mariner
cbl_mariner
CVE-2011-0433 affecting package t1lib 5.1.2-28
2024-06-02 09:07:47
debiancve
debiancve
CVE-2011-0433
2012-11-19 12:10:48
CVE-2011-5244
2012-11-19 12:10:49
ubuntucve
ubuntucve
CVE-2011-0433
2012-01-13 00:00:00
CVE-2011-5244
2012-11-19 00:00:00
prion
prion
Heap overflow
2012-11-19 12:10:00
Code injection
2012-11-19 12:10:00
cvelist
cvelist
CVE-2011-0433
2012-11-19 11:00:00
CVE-2011-5244
2012-11-19 11:00:00
securityvulns
securityvulns
t1lib / xpdf library multiple security vulnerabilities
2012-01-16 00:00:00
ubuntu
ubuntu
t1lib vulnerabilities
2012-01-19 00:00:00
redhat
redhat
(RHSA-2012:0137) Moderate: texlive security update
2012-02-15 00:00:00
(RHSA-2012:0062) Moderate: t1lib security update
2012-01-24 00:00:00
(RHSA-2012:1201) Moderate: tetex security update
2012-08-23 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: t1lib-5.1.2-9.fc15
2012-01-28 03:28:44
[SECURITY] Fedora 16 Update: t1lib-5.1.2-9.fc16
2012-01-28 03:23:39
oraclelinux
oraclelinux
t1lib security update
2012-01-24 00:00:00
texlive security update
2012-02-15 00:00:00
tetex security update
2012-08-23 00:00:00
amazon
amazon
Medium: t1lib
2012-02-02 14:26:00
Medium: texlive
2012-03-04 16:08:00
osv
osv
t1lib - several
2012-01-14 00:00:00
centos
centos
t1lib security update
2012-01-30 20:25:25
kpathsea, mendexk, texlive security update
2012-02-16 13:36:55
tetex security update
2012-08-23 23:12:26
debian
debian
[SECURITY] [DSA 2388-1] t1lib security update
2012-01-15 10:26:10
gentoo
gentoo
T1Lib: : Multiple vulnerabilities
2017-01-23 00:00:00