Advisories ยป MGASA-2017-0450

Updated evince packages fix security vulnerability

Publication date: 16 Dec 2017
Modification date: 16 Dec 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-1000159

Description

It was discovered that Evince incorrectly handled printing certain DVI
files. If a user were tricked into opening and printing a specially-named
DVI file, an attacker could use this issue to execute arbitrary code
(CVE-2017-1000159)
                

References

SRPMS

5/core

6/core