drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in evince
Name: |
Ausführen beliebiger Kommandos in evince |
|
ID: |
FEDORA-2017-d6402c8005 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 26 |
|
Datum: |
Mi, 27. Dezember 2017, 10:09 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000159 |
|
Applikationen: |
evince |
|
Originalnachricht |
------------------------------------------------------------------------------- - Fedora Update Notification FEDORA-2017-d6402c8005 2017-12-26 15:02:57.896733 ------------------------------------------------------------------------------- -
Name : evince Product : Fedora 26 Version : 3.24.2 Release : 2.fc26 URL : https://wiki.gnome.org/Apps/Evince Summary : Document viewer Description : Evince is simple multi-page document viewer. It can display and print Portable Document Format (PDF), PostScript (PS) and Encapsulated PostScript (EPS) files. When supported by the document format, evince allows searching for text, copying text to the clipboard, hypertext navigation, table-of-contents bookmarks and editing of forms.
Support for other document formats such as DVI and DJVU can be added by installing additional backends.
------------------------------------------------------------------------------- - Update Information:
CVE-2017-1000159 Command injection when exporting DVI to PDF ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #1521212 - CVE-2017-1000159 evince: Command injection when exporting to PDF [fedora-26] https://bugzilla.redhat.com/show_bug.cgi?id=1521212 [ 2 ] Bug #1521211 - CVE-2017-1000159 evince: Command injection when exporting to PDF [fedora-25] https://bugzilla.redhat.com/show_bug.cgi?id=1521211 ------------------------------------------------------------------------------- -
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade evince' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
|
|
|
|