oval:org.mitre.oval:def:15071
| Definition Id: oval:org.mitre.oval:def:15071 | |||
| Oval ID: | oval:org.mitre.oval:def:15071 | ||
| Title: | DSA-2357-1 evince -- several | ||
| Description: | Jon Larimer from IBM X-Force Advanced Research discovered multiple vulnerabilities in the DVI backend of the evince document viewer: CVE-2010-2640 Insuficient array bounds checks in the PK fonts parser could lead to function pointer overwrite, causing arbitrary code execution. CVE-2010-2641 Insuficient array bounds checks in the PK fonts parser could lead to function pointer overwrite, causing arbitrary code execution. CVE-2010-2642 Insuficient bounds checks in the AFM fonts parser when writing data to a memory buffer allocated on heap could lead to arbitrary memory overwrite and arbitrary code execution. CVE-2010-2643 Insuficient check on an integer used as a size for memory allocation can lead to arbitrary write outside the allocated range and cause arbitrary code execution. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-2357-1 CVE-2010-2640 CVE-2010-2641 CVE-2010-2642 CVE-2010-2643 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 5.0 | Product(s): | evince |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:6513 | |||
| Oval ID: | oval:org.mitre.oval:def:6513 | ||
| Title: | Debian GNU/Linux 5.0 is installed | ||
| Description: | Debian GNU/Linux 5.0 (lenny) is installed | ||
| Family: | unix | Class: | inventory |
| Reference(s): | cpe:/o:debian:debian_gnu/linux:5.0 | Version: | 7 |
| Platform(s): | Debian GNU/Linux 5.0 | Product(s): | |
| Definition Synopsis: | |||
| Referenced By: | |||
| oval:org.mitre.oval:def:15071 | |||
