CVE-2008-1693

NameCVE-2008-1693
DescriptionThe CairoFont::create function in CairoFontEngine.cc in Poppler, possibly before 0.8.0, as used in Xpdf, Evince, ePDFview, KWord, and other applications, does not properly handle embedded fonts in PDF files, which allows remote attackers to execute arbitrary code via a crafted font object, related to dereferencing a function pointer associated with the type of this font object.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-1548-1, DSA-1606-1
NVD severitymedium (attack range: remote)
Debian Bugs476842

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
poppler (PTS)wheezy0.18.4-6fixed
wheezy (security)0.18.4-6+deb7u5fixed
jessie0.26.5-2+deb8u1fixed
jessie (security)0.26.5-2+deb8u2fixed
stretch0.48.0-2fixed
stretch (security)0.48.0-2+deb9u1fixed
buster, sid0.61.1-2fixed
swftools (PTS)wheezy0.9.2+ds1-3fixed
wheezy (security)0.9.2+ds1-3+deb7u1fixed
jessie0.9.2+git20130725-2fixed
buster, stretch, sid0.9.2+git20130725-4.1fixed
texlive-base (PTS)wheezy2012.20120611-5fixed
wheezy (security)2012.20120611-5+deb7u1fixed
jessie (security), jessie2014.20141024-2+deb8u1fixed
stretch2016.20170123-5fixed
buster2017.20180103-1fixed
sid2017.20180110-1fixed
texlive-bin (PTS)wheezy2012.20120628-4fixed
jessie2014.20140926.35254-6fixed
stretch2016.20160513.41080.dfsg-2fixed
buster, sid2017.20170613.44572-8fixed
xpdf (PTS)wheezy3.03-10fixed
jessie3.03-17fixed
stretch3.04-4fixed
buster, sid3.04-5fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
kdegraphicssource(unstable)(not affected)
popplersource(unstable)0.6.4-1medium476842
popplersourceetch0.4.5-5.1etch3mediumDSA-1606-1
swftoolssource(unstable)(not affected)
texlive-basesource(unstable)(not affected)
texlive-binsource(unstable)(not affected)
xpdfsource(unstable)3.02medium
xpdfsourceetch3.01-9.1+etch3mediumDSA-1548-1

Notes

- kdegraphics <not-affected> (Vulnerable code not present)
- texlive-bin <not-affected> (code already has the needed fix)
see GfxFont.cc GfxFont::readEmbFontFile, line 362 checks if the font file is
a stream or not. Anyone knows a fixed version?
- texlive-base <not-affected> (Vulnerable code not present)
- swftools <not-affected> (Vulnerable file/code not present)

Search for package or bug name: Reporting problems