blob: 07c5e7ee5361fcb04b1acf289b24cfed1da1020e [file] [log] [blame]
<?xml version="1.0" encoding="utf-8"?>
<glsa id="200804-18">
<title>Poppler: User-assisted execution of arbitrary code</title>
Poppler does not handle fonts inside PDF files safely, allowing for
execution of arbitrary code.
<product type="ebuild">poppler</product>
<announced>April 17, 2008</announced>
<revised>April 17, 2008: 02</revised>
<package name="app-text/poppler" auto="yes" arch="*">
<unaffected range="ge">0.6.3</unaffected>
<vulnerable range="lt">0.6.3</vulnerable>
Poppler is a cross-platform PDF rendering library originally based on
Kees Cook from the Ubuntu Security Team reported that the
CairoFont::create() function in the file does not
verify the type of an embedded font object inside a PDF file before
dereferencing a function pointer from it.
<impact type="normal">
A remote attacker could entice a user to open a specially crafted PDF
file with a Poppler-based PDF viewer such as Gentoo's Xpdf, Epdfview,
or Evince, potentially resulting in the execution of arbitrary code
with the privileges of the user running the application.
There is no known workaround at this time.
All Poppler users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose &quot;&gt;=app-text/poppler-0.6.3&quot;</code>
<uri link="">CVE-2008-1693</uri>
<metadata tag="submitter" timestamp="Mon, 14 Apr 2008 01:16:23 +0000">
<metadata tag="bugReady" timestamp="Thu, 17 Apr 2008 11:28:12 +0000">