CVE-2010-2643 — Integer Overflow or Wraparound in Redhat Evince

CWE-189 CWE-190 — Integer Overflow or Wraparound9 documents8 sources

Severity

7.6HIGHNVD

EPSS

7.8%

top 7.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Gnome Evince Redhat Evince

Timeline

PublishedJan 7

Latest updateMay 17

Description

Integer overflow in the TFM font parser in the dvi-backend component in Evince 2.32 and earlier allows remote attackers to execute arbitrary code via a crafted font in conjunction with a DVI file that is processed by the thumbnailer.

CVSS vector

AV:N/AC:H/C:C/I:C/A:CExploitability: 4.9 | Impact: 10.0

Affected Packages2 packages

▶Debiangnome/evince< 2.30.3-2+3

▶NVDredhat/evince34 versions+33

Patches

Patch: git.gnome.org ↗Patch: bugzilla.redhat.com ↗Patch: git.gnome.org ↗

🔴Vulnerability Details

GHSA

GHSA-pgxj-rq3f-m3h9: Integer overflow in the TFM font parser in the dvi-backend component in Evince 2↗2022-05-17

▶

CVEList

CVE-2010-2643: Integer overflow in the TFM font parser in the dvi-backend component in Evince 2↗2011-01-07

▶

OSV

CVE-2010-2643: Integer overflow in the TFM font parser in the dvi-backend component in Evince 2↗2011-01-07

▶

📋Vendor Advisories

Red Hat

evince: Integer overflow in DVI file TFM font parser↗2011-01-05

▶

Ubuntu

Evince vulnerabilities↗2011-01-05

▶

Debian

CVE-2010-2643: evince - Integer overflow in the TFM font parser in the dvi-backend component in Evince 2...↗2010

▶

💬Community

Bugzilla

CVE-2010-2641 CVE-2010-2642 CVE-2010-2640 CVE-2010-2643 evince various flaws [fedora-all]↗2011-01-06

▶

Bugzilla

CVE-2010-2643 evince: Integer overflow in DVI file TFM font parser↗2010-12-30

▶