fuzz on pdf creates double free in evince/poppler
Bug #164939 reported by
Stephen Cook
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Evince |
Fix Released
|
Medium
|
|||
evince (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
poppler (Ubuntu) |
Fix Released
|
Medium
|
Ubuntu Desktop Bugs |
Bug Description
This bug will probably will effect anything that uses poppler. I will upload an example of one offending pdf. I think any pdf with the appropriate fuzzing can cause the double free...
It should be easy to get the backtrace by using gdb.
This bug could be a security vuln. I don't really know.
Changed in evince: | |
status: | Unknown → Confirmed |
Changed in evince: | |
status: | Confirmed → Fix Released |
Changed in evince: | |
importance: | Unknown → Medium |
Changed in evince: | |
importance: | Medium → Unknown |
Changed in evince: | |
importance: | Unknown → Medium |
To post a comment you must log in.
Someone else has found the same bug: seclists. org/pen- test/2007/ Nov/0133. html
http://