CVE-2008-1693

NameCVE-2008-1693
DescriptionThe CairoFont::create function in CairoFontEngine.cc in Poppler, possibly before 0.8.0, as used in Xpdf, Evince, ePDFview, KWord, and other applications, does not properly handle embedded fonts in PDF files, which allows remote attackers to execute arbitrary code via a crafted font object, related to dereferencing a function pointer associated with the type of this font object.
SourceCVE (at NVD; oss-sec, fulldisc, OSVDB, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, more)
ReferencesDSA-1548-1, DSA-1606-1
NVD severitymedium (attack range: remote, user-initiated)
Debian Bugs476842
Debian/oldstablenot vulnerable.
Debian/stablenot vulnerable.
Debian/testingnot vulnerable.
Debian/unstablenot vulnerable.

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
kdegraphics (PTS)squeeze4:4.4.5-2fixed
poppler (PTS)squeeze (security), squeeze0.12.4-1.2+squeeze3fixed
squeeze (lts)0.12.4-1.2+squeeze4fixed
wheezy0.18.4-6fixed
jessie, sid0.26.5-2fixed
swftools (PTS)wheezy0.9.2+ds1-3fixed
jessie, sid0.9.2+git20130725-2fixed
texlive-base (PTS)squeeze2009-11+squeeze1fixed
wheezy2012.20120611-5fixed
jessie, sid2014.20141024-2fixed
texlive-bin (PTS)squeeze2009-8fixed
wheezy2012.20120628-4fixed
jessie, sid2014.20140926.35254-6fixed
xpdf (PTS)squeeze3.02-12+squeeze1fixed
wheezy3.03-10fixed
jessie, sid3.03-17fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
kdegraphicssource(unstable)(not affected)
popplersource(unstable)0.6.4-1medium476842
popplersourceetch0.4.5-5.1etch3mediumDSA-1606-1
swftoolssource(unstable)(not affected)
texlive-basesource(unstable)(not affected)
texlive-binsource(unstable)(not affected)
xpdfsource(unstable)3.02medium
xpdfsourceetch3.01-9.1+etch3mediumDSA-1548-1

Notes

- kdegraphics <not-affected> (Vulnerable code not present)
- texlive-bin <not-affected> (code already has the needed fix)
see GfxFont.cc GfxFont::readEmbFontFile, line 362 checks if the font file is
a stream or not. Anyone knows a fixed version?
- texlive-base <not-affected> (Vulnerable code not present)
- swftools <not-affected> (Vulnerable file/code not present)

Search for package or bug name: Reporting problems