CVE-2010-2641

Priority
Medium
Description
Array index error in the VF font parser in the dvi-backend component in
Evince 2.32 and earlier allows remote attackers to cause a denial of
service (application crash) or possibly execute arbitrary code via a
crafted font in conjunction with a DVI file that is processed by the
thumbnailer.
References
Package
Upstream:needed
Patches:
Upstream:http://git.gnome.org/browse/evince/commit/?id=d4139205b010ed06310d14284e63114e88ec6de2
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:38:46 UTC (commit 9756)