CVE-2010-2642

NONE EPSS 96.2%
Published Jan 7, 201115y ago · Modified Jun 16, 20262w ago
Find Similar
Published Jan 7, 2011 15y ago
Last Modified Jun 16, 2026 2w ago

Description

Heap-based buffer overflow in the AFM font parser in the dvi-backend component in Evince 2.32 and earlier, teTeX 3.0, t1lib 5.1.2, and possibly other products allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font in conjunction with a DVI file that is processed by the thumbnailer.

Threat Intelligence

EPSS Exploit Probability
96.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer Memory Safety

Affected Products 36

VendorProductVersionRange
redhatevince* ≤2.32
redhatevince0.1any
redhatevince0.2any
redhatevince0.3any
redhatevince0.4any
redhatevince0.5any
redhatevince0.6any
redhatevince0.7any
redhatevince0.8any
redhatevince0.9any
redhatevince2.19any
redhatevince2.20any
redhatevince2.21any
redhatevince2.22any
redhatevince2.23any
redhatevince2.24any
redhatevince2.25any
redhatevince2.26any
redhatevince2.27any
redhatevince2.28any
redhatevince2.29any
redhatevince2.29.92any
redhatevince2.30any
redhatevince2.30.2any
redhatevince2.30.3any
redhatevince2.31any
redhatevince2.31.1any
redhatevince2.31.2any
redhatevince2.31.4any
redhatevince2.31.4.1any
redhatevince2.31.6any
redhatevince2.31.6.1any
redhatevince2.31.90any
redhatevince2.31.92any
t1libt1lib5.1.2any
tugtetex3.0any

References 27

  • git.gnome.org http://git.gnome.org/browse/evince/commit/?id=d4139205b010ed06310d14284e63114e88ec6de2
    Patch
  • lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052910.html
  • lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052995.html
  • lists.mandriva.com http://lists.mandriva.com/security-announce/2011-01/msg00006.php
  • lists.opensuse.org http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
  • rhn.redhat.com http://rhn.redhat.com/errata/RHSA-2012-1201.html
  • secunia.com http://secunia.com/advisories/42769
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/42821
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/42847
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/42872
  • debian.org http://www.debian.org/security/2011/dsa-2357
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2011:016
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2011:017
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2012:144
  • redhat.com http://www.redhat.com/support/errata/RHSA-2011-0009.html
  • securityfocus.com http://www.securityfocus.com/bid/45678
  • securitytracker.com http://www.securitytracker.com/id?1024937
  • ubuntu.com http://www.ubuntu.com/usn/USN-1035-1
  • vupen.com http://www.vupen.com/english/advisories/2011/0029
    Vendor Advisory
  • vupen.com http://www.vupen.com/english/advisories/2011/0043
    Vendor Advisory
  • vupen.com http://www.vupen.com/english/advisories/2011/0056
  • vupen.com http://www.vupen.com/english/advisories/2011/0097
  • vupen.com http://www.vupen.com/english/advisories/2011/0102
  • vupen.com http://www.vupen.com/english/advisories/2011/0193
  • vupen.com http://www.vupen.com/english/advisories/2011/0194
  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=666318
    Patch
  • security.gentoo.org https://security.gentoo.org/glsa/201701-57

Remediation

  • git.gnome.org http://git.gnome.org/browse/evince/commit/?id=d4139205b010ed06310d14284e63114e88ec6de2
    Patch
  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=666318
    Patch