CVE-2006-5864
Published: 11 November 2006
Stack-based buffer overflow in the ps_gettext function in ps.c for GNU gv 3.6.2, and possibly earlier versions, allows user-assisted attackers to execute arbitrary code via a PostScript (PS) file with certain headers that contain long comments, as demonstrated using the (1) DocumentMedia, (2) DocumentPaperSizes, and possibly (3) PageMedia and (4) PaperSize headers. NOTE: this issue can be exploited through other products that use gv such as evince.
Priority
Status
| Package | Release | Status |
|---|---|---|
|
evince Launchpad, Ubuntu, Debian |
dapper |
Released
(0.5.2-0ubuntu3.2)
|
| edgy |
Released
(0.6.1-0ubuntu1.2)
|
|
| feisty |
Released
(0.8.1-0ubuntu1)
|
|
| upstream |
Needs triage
|
|
|
evince-gtk Launchpad, Ubuntu, Debian |
dapper |
Released
(0.5.2-0ubuntu2.1)
|
| edgy |
Released
(0.5.2-0ubuntu4.1)
|
|
| feisty |
Released
(0.5.2-0ubuntu7)
|
|
| upstream |
Needs triage
|
|
|
gv Launchpad, Ubuntu, Debian |
dapper |
Released
(3.6.1-12ubuntu0.2)
|
| edgy |
Released
(3.6.1-13ubuntu0.2)
|
|
| feisty |
Released
(3.6.2-3ubuntu1)
|
|
| upstream |
Needs triage
|