#VU19257 Buffer overflow in Evince - CVE-2019-1010006

Cybersecurity Help s.r.o.

Published: 2019-07-19 | Updated: 2019-07-22

Vulnerability identifier: #VU19257

Vulnerability risk: High

CVSSv4.0: 7 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Amber]

CVE-ID: CVE-2019-1010006

CWE-ID: CWE-119

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Evince
Client/Desktop applications / Multimedia software

Vendor: Gnome Development Team

Description

The vulnerability allows a remote attacker to execute arbitrary code or cause a denial of service (DoS) condition on a targeted system.

The vulnerability exists due to a buffer overflow condition in the "backend/tiff/tiff-document.c" when handling PDF files. A remote attacker can trick a victim to open a specially crafted PDF file and execute arbitrary code or cause a DoS condition on the targeted system.

Mitigation
Install updated from vendor's website.

Vulnerable software versions

Evince: 3.26

External links
https://bugzilla.gnome.org/show_bug.cgi?id=788980
https://bug788980.bugzilla-attachments.gnome.org/attachment.cgi?id=365866

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

Latest bulletins with this vulnerability

Ubuntu update for atril

Debian update for evince

OpenSUSE Linux update for evince

Buffer ovreflow in GNOME Evince