=========================================================== 
Ubuntu Security Notice USN-390-3          December 06, 2006
evince-gtk vulnerability
CVE-2006-5864
==========================================================
A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS
Ubuntu 6.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 6.06 LTS:
  evince-gtk                               0.5.2-0ubuntu2.1

Ubuntu 6.10:
  evince-gtk                               0.5.2-0ubuntu4.1

In general, a standard system upgrade is sufficient to effect the
necessary changes.

Details follow:

USN-390-2 fixed vulnerabilities in evince.  This update provides the 
corresponding update for evince-gtk.

Original advisory details:

  A buffer overflow was discovered in the PostScript processor included 
  in evince.  By tricking a user into opening a specially crafted PS 
  file, an attacker could crash evince or execute arbitrary code with 
  the user's privileges.


Updated packages for Ubuntu 6.06 LTS:

  Source archives:

          Size/MD5:    22511 0cf118d6918268ba4f53c9b21c2e4abc
          Size/MD5:      893 6bd5d56c1d26042f0882ad1c8f35d8c4
          Size/MD5:  1362513 5020afb1768d89c251ad8c2a233d9fcf

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

          Size/MD5:   311524 9afc1a61adb192c0c115bcc8231008c1

  i386 architecture (x86 compatible Intel/AMD)

          Size/MD5:   282212 15a8292c95bed93d2af5d4917172ca8c

  powerpc architecture (Apple Macintosh G3/G4/G5)

          Size/MD5:   299064 510f7b8c93b8a8a65f71cae17176cd59

  sparc architecture (Sun SPARC/UltraSPARC)

          Size/MD5:   287254 f75088c1015e44cf7ed2633340d0d24f

Updated packages for Ubuntu 6.10:

  Source archives:

          Size/MD5:    22622 194a824da15c50fe472762f960f2b9fb
          Size/MD5:      893 24d9a86b4a012fd133ee37b538e9156c
          Size/MD5:  1362513 5020afb1768d89c251ad8c2a233d9fcf

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

          Size/MD5:   305732 af144ed0736a7ef77aba67ef9cbbeaae

  i386 architecture (x86 compatible Intel/AMD)

          Size/MD5:   286362 21f58e429f79a605fa2bff0c36a7cbb6

  powerpc architecture (Apple Macintosh G3/G4/G5)

          Size/MD5:   293918 c9e00c6154cddae33bd8c99afbace8fd

  sparc architecture (Sun SPARC/UltraSPARC)

          Size/MD5:   282784 596cfcc780feac5016866a46375cbc42

Ubuntu: evince-gtk vulnerability

December 6, 2006
USN-390-2 fixed vulnerabilities in evince

Summary

Update Instructions

References

Severity
Ubuntu Security Notice USN-390-3 December 06, 2006

Package Information

Related News

24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
30.Lock Globe Motherboard Esm H320
1 - 2 min read
The SPDX 3.0 release marks a significant milestone in software management, particularly for Linux admins, infosec professionals, internet security
11.Locks IsometricPattern Esm H320
2 - 3 min read
Open Source maintainers and developers have been warned about the continued wave of attacks aimed at project maintainers similar to those recently
28.Lock Globe Esm H320
1 - 2 min read
A resurgence of cyberattacks targeting Linux systems in Asian campaigns through the utilization of the Pupy Remote Access Trojan (RAT) has been
27.Tablet Connections Blocks Lock Esm H320
2 - 4 min read
Canonical has recently announced the Beta release of Ubuntu Linux 24.04 LTS , codenamed "Noble Numbat." This release aims to continue Ubuntu's
21.Globe RadiatingCode Esm H320
2 - 3 min read
The open-source movement has come a long way, from its origins in the 1960s and 1970s to becoming an integral part of organizations worldwide.
13.Lock StylizedMotherboard Esm H320
2 - 3 min read
The Rust-based Edera project demonstrates a unique approach to container security that addresses cloud-native computing challenges. Let's examine
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved