CVE-2008-1693

NameCVE-2008-1693
DescriptionThe CairoFont::create function in CairoFontEngine.cc in Poppler, possibly before 0.8.0, as used in Xpdf, Evince, ePDFview, KWord, and other applications, does not properly handle embedded fonts in PDF files, which allows remote attackers to execute arbitrary code via a crafted font object, related to dereferencing a function pointer associated with the type of this font object.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-1548-1, DSA-1606-1
NVD severitymedium (attack range: remote)
Debian Bugs476842

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
poppler (PTS)jessie (security), jessie0.26.5-2+deb8u4fixed
stretch (security), stretch0.48.0-2+deb9u2fixed
buster, sid0.63.0-2fixed
swftools (PTS)jessie0.9.2+git20130725-2fixed
buster, sid, stretch0.9.2+git20130725-4.1fixed
texlive-base (PTS)jessie (security), jessie2014.20141024-2+deb8u1fixed
stretch2016.20170123-5fixed
buster, sid2018.20180505-1fixed
texlive-bin (PTS)jessie2014.20140926.35254-6fixed
stretch2016.20160513.41080.dfsg-2fixed
buster, sid2018.20180710.48169-1fixed
xpdf (PTS)jessie3.03-17fixed
stretch3.04-4fixed
buster, sid3.04-7fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
kdegraphicssource(unstable)(not affected)
popplersource(unstable)0.6.4-1medium476842
popplersourceetch0.4.5-5.1etch3mediumDSA-1606-1
swftoolssource(unstable)(not affected)
texlive-basesource(unstable)(not affected)
texlive-binsource(unstable)(not affected)
xpdfsource(unstable)3.02medium
xpdfsourceetch3.01-9.1+etch3mediumDSA-1548-1

Notes

- kdegraphics <not-affected> (Vulnerable code not present)
- texlive-bin <not-affected> (code already has the needed fix)
see GfxFont.cc GfxFont::readEmbFontFile, line 362 checks if the font file is
a stream or not. Anyone knows a fixed version?
- texlive-base <not-affected> (Vulnerable code not present)
- swftools <not-affected> (Vulnerable file/code not present)

Search for package or bug name: Reporting problems