Information on source package evince

Available versions

ReleaseVersion
jessie3.14.1-2+deb8u2
jessie (security)3.14.1-2+deb8u3
stretch (security)3.22.1-3+deb9u1
buster3.30.2-3
bullseye3.34.1-1
sid3.34.1-1

Open issues

BugjessiestretchbusterbullseyesidDescription
CVE-2019-1010006fixedvulnerablefixedfixedfixedEvince 3.26.0 is affected by buffer overflow. The impact is: DOS / Pos ...
CVE-2017-1000159fixedvulnerable (no DSA)fixedfixedfixedCommand injection in evince via filename when printing to PDF. This af ...

Open unimportant issues

BugjessiestretchbusterbullseyesidDescription
CVE-2019-11459fixedvulnerablevulnerablefixedfixedThe tiff_document_render() and tiff_document_get_thumbnail() functions ...

Resolved issues

BugDescription
TEMP-0612668-CE1EF5evince segfault
CVE-2017-1000083backend/comics/comics-document.c (aka the comic book backend) in GNOME ...
CVE-2013-3718evince is missing a check on number of pages which can lead to a segme ...
CVE-2011-5244Multiple off-by-one errors in the (1) token and (2) linetoken function ...
CVE-2011-0433Heap-based buffer overflow in the linetoken function in afmparse.c in ...
CVE-2010-2643Integer overflow in the TFM font parser in the dvi-backend component i ...
CVE-2010-2642Heap-based buffer overflow in the AFM font parser in the dvi-backend c ...
CVE-2010-2641Array index error in the VF font parser in the dvi-backend component i ...
CVE-2010-2640Array index error in the PK font parser in the dvi-backend component i ...
CVE-2006-5864Stack-based buffer overflow in the ps_gettext function in ps.c for GNU ...

Security announcements

DSA / DLADescription
DLA-1881-1evince - security update
DLA-1204-1evince - security update
DLA-1031-1evince - security update
DSA-3911-1evince - security update
DSA-3911-1evince - security update
DSA-2357-1evince - several
DSA-1243-1evince
Search for package or bug name: Reporting problems