Evince 3.26.0 is affected by buffer overflow. The impact is: DOS / Possible code execution. The component is: backend/tiff/tiff-document.c. The attack vector is: Victim must open a crafted PDF file. The issue occurs because of an incorrect integer overflow protection mechanism in tiffdocumentrender and tiffdocumentget_thumbnail.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "evince-dbg": "3.18.2-1ubuntu4.6", "evince-dbgsym": "3.18.2-1ubuntu4.6", "evince": "3.18.2-1ubuntu4.6", "evince-common": "3.18.2-1ubuntu4.6", "libevview3-3-dbgsym": "3.18.2-1ubuntu4.6", "libevince-dev": "3.18.2-1ubuntu4.6", "evince-gtk": "3.18.2-1ubuntu4.6", "gir1.2-evince-3.0": "3.18.2-1ubuntu4.6", "libevdocument3-4": "3.18.2-1ubuntu4.6", "libevdocument3-4-dbgsym": "3.18.2-1ubuntu4.6", "libevview3-3": "3.18.2-1ubuntu4.6" } ] }