Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Debian Local Security Checks >> [DSA1243] DSA-1243-1 evince


Vulnerability Assessment Details

[DSA1243] DSA-1243-1 evince

Vulnerability Assessment Summary
DSA-1243-1 evince

Detailed Explanation for this Vulnerability Assessment

Renaud Lifchitz discovered that gv, the PostScript and PDF viewer for X,
performs insufficient boundary checks in the Postscript parsing code,
which permits the execution of arbitrary code through a buffer overflow.
Evince embeds a copy of gv and needs an update as well.
For the stable distribution (sarge) this problem has been fixed in
version 0.1.5-2sarge1.
For the upcoming stable distribution (etch) this problem has been
fixed in version 0.4.0-3.
For the unstable distribution (sid) this problem has been fixed in
version 0.4.0-3.
We recommend that you upgrade your evince package.


Solution : http://www.debian.org/security/2006/dsa-1243
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is (C) 2007 Michel Arboi

Cables, Connectors

Western Digital WD10JPVX 1 TB 5400 RPM SATA 2.5" Laptop HDD
$41.95
Western Digital WD10JPVX  1 TB 5400 RPM SATA 2.5Fast Quad-Core Apple Mac Mini i7 2.3Ghz 16gb RAM 1TB HD A1347 MD388LL/A 2012
$759.0
Fast Quad-Core Apple Mac Mini i7 2.3Ghz 16gb RAM 1TB HD A1347 MD388LL/A 2012 pictureMac Mini - MGEN2LL/A (October, 2014) 2.6GHz i5, 8GB RAM, 1TB HDD
$530.0
Mac Mini - MGEN2LL/A (October, 2014) 2.6GHz i5, 8GB RAM, 1TB HDD pictureST1000LM035 P/N: 1RK172-568 F/W: SBM3 Site:WU Seagate 1TB Mobile HDD
$19.99
ST1000LM035 P/N: 1RK172-568 F/W: SBM3 Site:WU Seagate 1TB Mobile HDD picture


Discussions

No Discussions have been posted on this vulnerability.