970030 – (CVE-2013-3718) VUL-1: CVE-2013-3718: evince: missing check on number of pages

Bug 970030 (CVE-2013-3718) - VUL-1: CVE-2013-3718: evince: missing check on number of pages

Summary: VUL-1: CVE-2013-3718: evince: missing check on number of pages

Status:	RESOLVED UPSTREAM

Alias:	CVE-2013-3718

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P3 - Medium Severity: Normal
Target Milestone:	---
Assignee:	E-mail List
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/162622/
Whiteboard:	CVSSv2:RedHat:CVE-2013-3718:4.3:(AV:N...
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2016-03-08 09:12 UTC by Victor Pereira
Modified:	2016-08-10 16:21 UTC (History)
CC List:	4 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
PoC (152.26 KB, application/pdf) 2016-03-08 09:15 UTC, Victor Pereira	Details
libview: Fix warning on ev_view_document_changed_cb (1.55 KB, patch) 2016-03-08 09:16 UTC, Victor Pereira	Details \| Diff
Check the numbers of pages when there is a new document (876 bytes, patch) 2016-03-08 09:17 UTC, Victor Pereira	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Victor Pereira 2016-03-08 09:12:58 UTC

CVE-2013-3718


Missing check of number of pages leads evince to segmentation fault. 

References:
https://bugzilla.gnome.org/show_bug.cgi?id=701302
http://people.canonical.com/~ubuntu-security/cve/2013/CVE-2013-3718.html
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-3718

Comment 1 Victor Pereira 2016-03-08 09:15:55 UTC

Created attachment 668136 [details]
PoC

Comment 2 Victor Pereira 2016-03-08 09:16:57 UTC

Created attachment 668139 [details]
libview: Fix warning on ev_view_document_changed_cb

Comment 3 Victor Pereira 2016-03-08 09:17:28 UTC

Created attachment 668140 [details]
Check the numbers of pages when there is a new document

Comment 4 Swamp Workflow Management 2016-03-08 23:00:25 UTC

bugbot adjusting priority

Comment 5 Dominique Leuenberger 2016-08-08 11:22:59 UTC

According to https://bugzilla.gnome.org/show_bug.cgi?id=701302 this fix had been commited to the GNOME 3-8 branch (and thus anything later has it)

openSUSE 13.1 (Evergreen, oldest openSUSE still sort of in maintenance) was already shipped with evince 3.10

Comment 6 Marcus Meissner 2016-08-10 12:33:45 UTC

already fixed then.