Updated evince packages fix security vulnerability
Publication date: 16 Dec 2017Modification date: 16 Dec 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-1000159
Description
It was discovered that Evince incorrectly handled printing certain DVI files. If a user were tricked into opening and printing a specially-named DVI file, an attacker could use this issue to execute arbitrary code (CVE-2017-1000159)
References
SRPMS
5/core
- evince-3.14.2-2.1.mga5
6/core
- evince-3.24.1-2.mga6