Fedora 26 : evince (2017-d6402c8005)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing a security update.

Description :

CVE-2017-1000159 Command injection when exporting DVI to PDF

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as
possible without introducing additional issues.

See also :

https://bodhi.fedoraproject.org/updates/FEDORA-2017-d6402c8005

Solution :

Update the affected evince package.

Risk factor :

Medium / CVSS Base Score : 4.6
(CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P)

Family: Fedora Local Security Checks

Nessus Plugin ID: 105477 ()

Bugtraq ID:

CVE ID: CVE-2017-1000159

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now