You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa evince

Sigurnosni nedostatak programskog paketa evince

by - 0
  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LUB

==========================================================================
Ubuntu Security Notice USN-3959-1
April 29, 2019

evince vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 19.04
– Ubuntu 18.10
– Ubuntu 18.04 LTS
– Ubuntu 16.04 LTS

Summary:

Evince could be made to expose sensitive information if it received
a specially crafted file.

Software Description:
– evince: Document viewer

Details:

It was discovered that Evince incorrectly handled certain images.
An attacker could possibly use this issue to expose sensitive
information.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 19.04:
  evince                          3.32.0-1ubuntu0.1
  evince-common                   3.32.0-1ubuntu0.1

Ubuntu 18.10:
  evince                          3.30.1-1ubuntu1.3
  evince-common                   3.30.1-1ubuntu1.3

Ubuntu 18.04 LTS:
  evince                          3.28.4-0ubuntu1.1
  evince-common                   3.28.4-0ubuntu1.1

Ubuntu 16.04 LTS:
  evince                          3.18.2-1ubuntu4.4
  evince-common                   3.18.2-1ubuntu4.4

In general, a standard system update will make all the necessary
changes.

References:
  https://usn.ubuntu.com/usn/usn-3959-1
  CVE-2019-11459

Package Information:
  https://launchpad.net/ubuntu/+source/evince/3.32.0-1ubuntu0.1
  https://launchpad.net/ubuntu/+source/evince/3.30.1-1ubuntu1.3
  https://launchpad.net/ubuntu/+source/evince/3.28.4-0ubuntu1.1
  https://launchpad.net/ubuntu/+source/evince/3.18.2-1ubuntu4.4—–BEGIN PGP SIGNATURE—–
Version: GnuPG v2

iQIcBAABCAAGBQJcxv/5AAoJEEW851uECx9pawUP/2+fUmPVyLmNLktxIbjuYJGA
Evr38yQopofMmbyz/mbWtTnT94PsvbIGMX46ZfDJDgcszesBNEBVXoJN2Oe+YSqt
SghIeRG1/3NAPFNcg/xZoZ52Tl7JJLD5hS48PaaZmUjoxp4IcfCZRBrSJYevvGxv
5PBDwa/gbzsv+Q7WbtLqaeZj/PV2lyvuj9kV+7Qvsxg7ACQpfMBlW3QMA2FJu0vO
hdFV4aD5X2TnI4mOgoQ/kx8ThV7NvUFLI8KdtTqTDIl4McbbV4wsfM4LD24sdABW
CjuEUY5UpiR7qeW/y8StVRl6uxrqMBs+1VvgvwNZfKP3OJzLagUqOyG1hUxW29rj
J7oXx+dHgG253cvPvitHSh5kN1CQFbbUNkLWP1v2aYwr1FUTFjVdk1MEaqwFMJcy
0v0tj8LT7iSpLZuQOJ3dfkeL1m4Jertq18DThwF7YF8cjbrmzf8CVY/kRNXnH+Yz
q6YLgBAdEaXPm6ub5o/1uiyoIohnfeI+ENo+ChjENdG/iUWZRBhR0m5sf+eGlNk3
3NFvl18VLAnkrbNW1HRB6EGFmk1AVY7VGwdp3bnH73mfLE76PKufchWrv8zTsGyo
s1DPpg/501y1ShU1f8oqdPVpg1Ot9l0dw7wiSXcGnS3tIEAMIUCxNrsyw+pkxQTZ
IOfR38zmvBKGJJ/InDAz
=Y3bb
—–END PGP SIGNATURE—–

AutorJosip Papratovic
Cert idNCERT-REF-2019-04-0001-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
IzvorAdobe
Top
More in Preporuke
Sigurnosni nedostatak programskog paketa GStreamer Base Plugins

Otkriven je sigurnosni nedostatak u programskom paketu GStreamer Base Plugins za operacijski sustav Ubuntu. Otkriveni nedostatak potencijalnim udaljenim napadačima omogućuje...

Close