CVE-2019-1010006

Опубликовано: 15 июл. 2019

Источник: ubuntu

Приоритет: medium

CVSS2: 6.8

CVSS3: 7.8

Описание

Evince 3.26.0 is affected by buffer overflow. The impact is: DOS / Possible code execution. The component is: backend/tiff/tiff-document.c. The attack vector is: Victim must open a crafted PDF file. The issue occurs because of an incorrect integer overflow protection mechanism in tiff_document_render and tiff_document_get_thumbnail.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needed
cosmic	ignored	end of life
devel	not-affected	code not present
disco	ignored	end of life
eoan	ignored	end of life
esm-apps/bionic	released	1.20.1-2ubuntu2+esm2
esm-apps/focal	not-affected	code not present
esm-apps/jammy	not-affected	code not present
esm-apps/noble	not-affected	code not present
esm-apps/xenial	needed

Показывать по

Релиз	Статус	Примечание
bionic	not-affected
cosmic	not-affected
devel	not-affected
disco	not-affected
eoan	not-affected
esm-infra-legacy/trusty	DNE
esm-infra/bionic	not-affected
esm-infra/focal	not-affected
esm-infra/xenial	released	3.18.2-1ubuntu4.6
focal	not-affected

Показывать по

Ссылки на источники

6.8 Medium

CVSS2

7.8 High

CVSS3

Связанные уязвимости

CVE-2019-1010006

CVSS3: 5.3

redhat

больше 6 лет назад

CVE-2019-1010006

CVSS3: 7.8

nvd

больше 6 лет назад

CVE-2019-1010006

CVSS3: 7.8

debian

больше 6 лет назад

Evince 3.26.0 is affected by buffer overflow. The impact is: DOS / Pos ...

openSUSE-SU-2019:1908-1

suse-cvrf

больше 6 лет назад

Security update for evince

SUSE-SU-2019:2052-1

suse-cvrf

больше 6 лет назад

Security update for evince

6.8 Medium

CVSS2

7.8 High

CVSS3

CVE-2019-1010006

Описание

Пакет atril

Пакет evince

Ссылки на источники

Связанные уязвимости