Описание
Security update for evince
This update for evince fixes the following issues:
- CVE-2017-1000159: Command injection in evince via filename when printing to PDF could lead to command execution (bsc#1070046)
This update was imported from the SUSE:SLE-12-SP2:Update update project.
Список пакетов
openSUSE Leap 42.3
evince-3.20.2-9.1
evince-browser-plugin-3.20.2-9.1
evince-devel-3.20.2-9.1
evince-lang-3.20.2-9.1
evince-plugin-comicsdocument-3.20.2-9.1
evince-plugin-djvudocument-3.20.2-9.1
evince-plugin-dvidocument-3.20.2-9.1
evince-plugin-pdfdocument-3.20.2-9.1
evince-plugin-psdocument-3.20.2-9.1
evince-plugin-tiffdocument-3.20.2-9.1
evince-plugin-xpsdocument-3.20.2-9.1
libevdocument3-4-3.20.2-9.1
libevview3-3-3.20.2-9.1
nautilus-evince-3.20.2-9.1
typelib-1_0-EvinceDocument-3_0-3.20.2-9.1
typelib-1_0-EvinceView-3_0-3.20.2-9.1
Ссылки
- E-Mail link for openSUSE-SU-2018:0960-1
- SUSE Security Ratings
Описание
Command injection in evince via filename when printing to PDF. This affects versions earlier than 3.25.91.
Затронутые продукты
openSUSE Leap 42.3:evince-3.20.2-9.1
openSUSE Leap 42.3:evince-browser-plugin-3.20.2-9.1
openSUSE Leap 42.3:evince-devel-3.20.2-9.1
openSUSE Leap 42.3:evince-lang-3.20.2-9.1
Ссылки
- CVE-2017-1000159
- SUSE Bug 1070046