ALT-PU-2019-1716-1
Package gnome-desktop3 updated to version 3.32.1.1-alt1 for branch sisyphus in task 228053.
Closed vulnerabilities
Published: 2019-04-22
BDU:2020-01690
Уязвимость функции TIFFReadRGBAImageOriented программного средства просмотра документов Evince, позволяющая нарушителю получить несанкционированный доступ к информации
Severity: MEDIUM (6.5)
Vector: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
References:
Published: 2019-04-23
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2019-11459
The tiff_document_render() and tiff_document_get_thumbnail() functions in the TIFF document backend in GNOME Evince through 3.32.0 did not handle errors from TIFFReadRGBAImageOriented(), leading to uninitialized memory use when processing certain TIFF image files.
Severity: MEDIUM (5.5)
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
References:
- openSUSE-SU-2019:1667
- openSUSE-SU-2019:1667
- RHSA-2019:3553
- RHSA-2019:3553
- https://gitlab.gnome.org/GNOME/evince/issues/1129
- https://gitlab.gnome.org/GNOME/evince/issues/1129
- [debian-lts-announce] 20190813 [SECURITY] [DLA 1881-1] evince security update
- [debian-lts-announce] 20190813 [SECURITY] [DLA 1881-1] evince security update
- [debian-lts-announce] 20190813 [SECURITY] [DLA 1882-1] atril security update
- [debian-lts-announce] 20190813 [SECURITY] [DLA 1882-1] atril security update
- FEDORA-2019-6316c0663e
- FEDORA-2019-6316c0663e
- FEDORA-2019-ff2b5b5b47
- FEDORA-2019-ff2b5b5b47
- 20200216 [SECURITY] [DSA 4624-1] evince security update
- 20200216 [SECURITY] [DSA 4624-1] evince security update
- USN-3959-1
- USN-3959-1
- DSA-4624
- DSA-4624