evince-40.4-1.3 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10742-1 Final 1 1 2024-06-15T00:00:00Z current 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z evince-40.4-1.3 on GA media These are all security issues fixed in the evince-40.4-1.3 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10742 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2006-5864/ SUSE CVE CVE-2006-5864 page https://www.suse.com/security/cve/CVE-2017-1000083/ SUSE CVE CVE-2017-1000083 page https://www.suse.com/security/cve/CVE-2019-1010006/ SUSE CVE CVE-2019-1010006 page https://www.suse.com/security/cve/CVE-2019-11459/ SUSE CVE CVE-2019-11459 page openSUSE Tumbleweed evince-40.4-1.3 evince-devel-40.4-1.3 evince-lang-40.4-1.3 evince-plugin-comicsdocument-40.4-1.3 evince-plugin-djvudocument-40.4-1.3 evince-plugin-dvidocument-40.4-1.3 evince-plugin-pdfdocument-40.4-1.3 evince-plugin-psdocument-40.4-1.3 evince-plugin-tiffdocument-40.4-1.3 evince-plugin-xpsdocument-40.4-1.3 libevdocument3-4-40.4-1.3 libevview3-3-40.4-1.3 nautilus-evince-40.4-1.3 typelib-1_0-EvinceDocument-3_0-40.4-1.3 typelib-1_0-EvinceView-3_0-40.4-1.3 evince-40.4-1.3 as a component of openSUSE Tumbleweed evince-devel-40.4-1.3 as a component of openSUSE Tumbleweed evince-lang-40.4-1.3 as a component of openSUSE Tumbleweed evince-plugin-comicsdocument-40.4-1.3 as a component of openSUSE Tumbleweed evince-plugin-djvudocument-40.4-1.3 as a component of openSUSE Tumbleweed evince-plugin-dvidocument-40.4-1.3 as a component of openSUSE Tumbleweed evince-plugin-pdfdocument-40.4-1.3 as a component of openSUSE Tumbleweed evince-plugin-psdocument-40.4-1.3 as a component of openSUSE Tumbleweed evince-plugin-tiffdocument-40.4-1.3 as a component of openSUSE Tumbleweed evince-plugin-xpsdocument-40.4-1.3 as a component of openSUSE Tumbleweed libevdocument3-4-40.4-1.3 as a component of openSUSE Tumbleweed libevview3-3-40.4-1.3 as a component of openSUSE Tumbleweed nautilus-evince-40.4-1.3 as a component of openSUSE Tumbleweed typelib-1_0-EvinceDocument-3_0-40.4-1.3 as a component of openSUSE Tumbleweed typelib-1_0-EvinceView-3_0-40.4-1.3 as a component of openSUSE Tumbleweed Stack-based buffer overflow in the ps_gettext function in ps.c for GNU gv 3.6.2, and possibly earlier versions, allows user-assisted attackers to execute arbitrary code via a PostScript (PS) file with certain headers that contain long comments, as demonstrated using the (1) DocumentMedia, (2) DocumentPaperSizes, and possibly (3) PageMedia and (4) PaperSize headers. NOTE: this issue can be exploited through other products that use gv such as evince. CVE-2006-5864 openSUSE Tumbleweed:evince-40.4-1.3 openSUSE Tumbleweed:evince-devel-40.4-1.3 openSUSE Tumbleweed:evince-lang-40.4-1.3 openSUSE Tumbleweed:evince-plugin-comicsdocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-djvudocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-dvidocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-pdfdocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-psdocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-tiffdocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-xpsdocument-40.4-1.3 openSUSE Tumbleweed:libevdocument3-4-40.4-1.3 openSUSE Tumbleweed:libevview3-3-40.4-1.3 openSUSE Tumbleweed:nautilus-evince-40.4-1.3 openSUSE Tumbleweed:typelib-1_0-EvinceDocument-3_0-40.4-1.3 openSUSE Tumbleweed:typelib-1_0-EvinceView-3_0-40.4-1.3 moderate 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-5864.html CVE-2006-5864 https://bugzilla.suse.com/219454 SUSE Bug 219454 https://bugzilla.suse.com/225201 SUSE Bug 225201 backend/comics/comics-document.c (aka the comic book backend) in GNOME Evince before 3.24.1 allows remote attackers to execute arbitrary commands via a .cbt file that is a TAR archive containing a filename beginning with a "--" command-line option substring, as demonstrated by a --checkpoint-action=exec=bash at the beginning of the filename. CVE-2017-1000083 openSUSE Tumbleweed:evince-40.4-1.3 openSUSE Tumbleweed:evince-devel-40.4-1.3 openSUSE Tumbleweed:evince-lang-40.4-1.3 openSUSE Tumbleweed:evince-plugin-comicsdocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-djvudocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-dvidocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-pdfdocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-psdocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-tiffdocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-xpsdocument-40.4-1.3 openSUSE Tumbleweed:libevdocument3-4-40.4-1.3 openSUSE Tumbleweed:libevview3-3-40.4-1.3 openSUSE Tumbleweed:nautilus-evince-40.4-1.3 openSUSE Tumbleweed:typelib-1_0-EvinceDocument-3_0-40.4-1.3 openSUSE Tumbleweed:typelib-1_0-EvinceView-3_0-40.4-1.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-1000083.html CVE-2017-1000083 https://bugzilla.suse.com/1046856 SUSE Bug 1046856 Evince 3.26.0 is affected by buffer overflow. The impact is: DOS / Possible code execution. The component is: backend/tiff/tiff-document.c. The attack vector is: Victim must open a crafted PDF file. The issue occurs because of an incorrect integer overflow protection mechanism in tiff_document_render and tiff_document_get_thumbnail. CVE-2019-1010006 openSUSE Tumbleweed:evince-40.4-1.3 openSUSE Tumbleweed:evince-devel-40.4-1.3 openSUSE Tumbleweed:evince-lang-40.4-1.3 openSUSE Tumbleweed:evince-plugin-comicsdocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-djvudocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-dvidocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-pdfdocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-psdocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-tiffdocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-xpsdocument-40.4-1.3 openSUSE Tumbleweed:libevdocument3-4-40.4-1.3 openSUSE Tumbleweed:libevview3-3-40.4-1.3 openSUSE Tumbleweed:nautilus-evince-40.4-1.3 openSUSE Tumbleweed:typelib-1_0-EvinceDocument-3_0-40.4-1.3 openSUSE Tumbleweed:typelib-1_0-EvinceView-3_0-40.4-1.3 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-1010006.html CVE-2019-1010006 https://bugzilla.suse.com/1141619 SUSE Bug 1141619 The tiff_document_render() and tiff_document_get_thumbnail() functions in the TIFF document backend in GNOME Evince through 3.32.0 did not handle errors from TIFFReadRGBAImageOriented(), leading to uninitialized memory use when processing certain TIFF image files. CVE-2019-11459 openSUSE Tumbleweed:evince-40.4-1.3 openSUSE Tumbleweed:evince-devel-40.4-1.3 openSUSE Tumbleweed:evince-lang-40.4-1.3 openSUSE Tumbleweed:evince-plugin-comicsdocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-djvudocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-dvidocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-pdfdocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-psdocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-tiffdocument-40.4-1.3 openSUSE Tumbleweed:evince-plugin-xpsdocument-40.4-1.3 openSUSE Tumbleweed:libevdocument3-4-40.4-1.3 openSUSE Tumbleweed:libevview3-3-40.4-1.3 openSUSE Tumbleweed:nautilus-evince-40.4-1.3 openSUSE Tumbleweed:typelib-1_0-EvinceDocument-3_0-40.4-1.3 openSUSE Tumbleweed:typelib-1_0-EvinceView-3_0-40.4-1.3 moderate 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-11459.html CVE-2019-11459 https://bugzilla.suse.com/1133037 SUSE Bug 1133037