Scientific Linux Security Update : evince on SL6.x i386/x86_64

This script is Copyright (C) 2012 Tenable Network Security, Inc.


Synopsis :

The remote Scientific Linux host is missing one or more security
updates.

Description :

An array index error was found in the DeVice Independent (DVI)
renderer's PK and VF font file parsers. A DVI file that references a
specially-crafted font file could, when opened, cause Evince to crash
or, potentially, execute arbitrary code with the privileges of the
user running Evince. (CVE-2010-2640, CVE-2010-2641)

A heap-based buffer overflow flaw was found in the DVI renderer's AFM
font file parser. A DVI file that references a specially-crafted font
file could, when opened, cause Evince to crash or, potentially,
execute arbitrary code with the privileges of the user running Evince.
(CVE-2010-2642)

An integer overflow flaw was found in the DVI renderer's TFM font file
parser. A DVI file that references a specially-crafted font file
could, when opened, cause Evince to crash or, potentially, execute
arbitrary code with the privileges of the user running Evince.
(CVE-2010-2643)

Note: The above issues are not exploitable unless an attacker can
trick the user into installing a malicious font file.

See also :

http://www.nessus.org/u?ac2eda7d

Solution :

Update the affected packages.

Risk factor :

High / CVSS Base Score : 7.6
(CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C)

Family: Scientific Linux Local Security Checks

Nessus Plugin ID: 60930 ()

Bugtraq ID:

CVE ID: CVE-2010-2640
CVE-2010-2641
CVE-2010-2642
CVE-2010-2643