PublicDateAtUSN: 2017-04-18
Candidate: CVE-2017-5662
PublicDate: 2017-04-18 14:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5662
 http://www.openwall.com/lists/oss-security/2017/04/18/1
 https://ubuntu.com/security/notices/USN-3280-1
Description:
 In Apache Batik before 1.9, files lying on the filesystem of the server
 which uses batik can be revealed to arbitrary users who send maliciously
 formed SVG files. The file types that can be shown depend on the user
 context in which the exploitable application is running. If the user is
 root a full compromise of the server - including confidential or sensitive
 files - would be possible. XXE can also be used to attack the availability
 of the server via denial of service as the references within a xml document
 can trivially trigger an amplification attack.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by: Lars Krapf and Pierre Ernst
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:H [7.3 HIGH]

Patches_batik:
upstream_batik: released (1.9-1, 1.7+dfsg-5+deb8u1, 1.8-4+deb9u1)
precise_batik: ignored (reached end-of-life)
precise/esm_batik: DNE (precise was needed)
trusty_batik: released (1.7.ubuntu-8ubuntu2.14.04.2)
trusty/esm_batik: DNE (trusty was released [1.7.ubuntu-8ubuntu2.14.04.2])
vivid/stable-phone-overlay_batik: DNE
vivid/ubuntu-core_batik: DNE
xenial_batik: ignored (end of standard support, was needed)
yakkety_batik: ignored (reached end-of-life)
zesty_batik: ignored (reached end-of-life)
artful_batik: ignored (reached end-of-life)
bionic_batik: not-affected (1.9-3)
cosmic_batik: not-affected (1.9-3)
disco_batik: not-affected (1.9-3)
eoan_batik: not-affected (1.9-3)
focal_batik: not-affected (1.9-3)
groovy_batik: not-affected (1.9-3)
hirsute_batik: not-affected (1.9-3)
impish_batik: not-affected (1.9-3)
jammy_batik: not-affected (1.9-3)
devel_batik: not-affected (1.9-3)