Описание
Security update for evince
This update for evince fixes the following issues:
- CVE-2017-1000159: Command injection in evince via filename when printing to PDF could lead to command execution (bsc#1070046)
Список пакетов
SUSE Linux Enterprise Desktop 12 SP3
evince-3.20.2-6.22.9
evince-browser-plugin-3.20.2-6.22.9
evince-lang-3.20.2-6.22.9
evince-plugin-djvudocument-3.20.2-6.22.9
evince-plugin-dvidocument-3.20.2-6.22.9
evince-plugin-pdfdocument-3.20.2-6.22.9
evince-plugin-psdocument-3.20.2-6.22.9
evince-plugin-tiffdocument-3.20.2-6.22.9
evince-plugin-xpsdocument-3.20.2-6.22.9
libevdocument3-4-3.20.2-6.22.9
libevview3-3-3.20.2-6.22.9
nautilus-evince-3.20.2-6.22.9
typelib-1_0-EvinceDocument-3_0-3.20.2-6.22.9
typelib-1_0-EvinceView-3_0-3.20.2-6.22.9
SUSE Linux Enterprise Server 12 SP3
evince-3.20.2-6.22.9
evince-browser-plugin-3.20.2-6.22.9
evince-lang-3.20.2-6.22.9
evince-plugin-djvudocument-3.20.2-6.22.9
evince-plugin-dvidocument-3.20.2-6.22.9
evince-plugin-pdfdocument-3.20.2-6.22.9
evince-plugin-psdocument-3.20.2-6.22.9
evince-plugin-tiffdocument-3.20.2-6.22.9
evince-plugin-xpsdocument-3.20.2-6.22.9
libevdocument3-4-3.20.2-6.22.9
libevview3-3-3.20.2-6.22.9
nautilus-evince-3.20.2-6.22.9
SUSE Linux Enterprise Server for SAP Applications 12 SP3
evince-3.20.2-6.22.9
evince-browser-plugin-3.20.2-6.22.9
evince-lang-3.20.2-6.22.9
evince-plugin-djvudocument-3.20.2-6.22.9
evince-plugin-dvidocument-3.20.2-6.22.9
evince-plugin-pdfdocument-3.20.2-6.22.9
evince-plugin-psdocument-3.20.2-6.22.9
evince-plugin-tiffdocument-3.20.2-6.22.9
evince-plugin-xpsdocument-3.20.2-6.22.9
libevdocument3-4-3.20.2-6.22.9
libevview3-3-3.20.2-6.22.9
nautilus-evince-3.20.2-6.22.9
SUSE Linux Enterprise Software Development Kit 12 SP3
evince-devel-3.20.2-6.22.9
typelib-1_0-EvinceDocument-3_0-3.20.2-6.22.9
typelib-1_0-EvinceView-3_0-3.20.2-6.22.9
SUSE Linux Enterprise Workstation Extension 12 SP3
typelib-1_0-EvinceDocument-3_0-3.20.2-6.22.9
typelib-1_0-EvinceView-3_0-3.20.2-6.22.9
Ссылки
- Link for SUSE-SU-2018:0947-1
- E-Mail link for SUSE-SU-2018:0947-1
- SUSE Security Ratings
- SUSE Bug 1070046
- SUSE CVE CVE-2017-1000159 page
Описание
Command injection in evince via filename when printing to PDF. This affects versions earlier than 3.25.91.
Затронутые продукты
SUSE Linux Enterprise Desktop 12 SP3:evince-3.20.2-6.22.9
SUSE Linux Enterprise Desktop 12 SP3:evince-browser-plugin-3.20.2-6.22.9
SUSE Linux Enterprise Desktop 12 SP3:evince-lang-3.20.2-6.22.9
SUSE Linux Enterprise Desktop 12 SP3:evince-plugin-djvudocument-3.20.2-6.22.9
Ссылки
- CVE-2017-1000159
- SUSE Bug 1070046