Scientific Linux Security Update : evince on SL6.x i386/x86_64

High Nessus Plugin ID 60930

Synopsis

The remote Scientific Linux host is missing one or more security updates.

Description

An array index error was found in the DeVice Independent (DVI) renderer's PK and VF font file parsers. A DVI file that references a specially crafted font file could, when opened, cause Evince to crash or, potentially, execute arbitrary code with the privileges of the user running Evince. (CVE-2010-2640, CVE-2010-2641)

A heap-based buffer overflow flaw was found in the DVI renderer's AFM font file parser. A DVI file that references a specially crafted font file could, when opened, cause Evince to crash or, potentially, execute arbitrary code with the privileges of the user running Evince.
(CVE-2010-2642)

An integer overflow flaw was found in the DVI renderer's TFM font file parser. A DVI file that references a specially crafted font file could, when opened, cause Evince to crash or, potentially, execute arbitrary code with the privileges of the user running Evince.
(CVE-2010-2643)

Note: The above issues are not exploitable unless an attacker can trick the user into installing a malicious font file.

Solution

Update the affected packages.

See Also

http://www.nessus.org/u?2aa85ad9

Plugin Details

Severity: High

ID: 60930

File Name: sl_20110106_evince_on_SL6_x.nasl

Version: 1.3

Type: local

Agent: unix

Published: 2012/08/01

Updated: 2018/12/31

Dependencies: 12634

Risk Information

Risk Factor: High

CVSS v2.0

Base Score: 7.6

Vector: CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: x-cpe:/o:fermilab:scientific_linux

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 2011/01/06

Reference Information

CVE: CVE-2010-2640, CVE-2010-2641, CVE-2010-2642, CVE-2010-2643