evince crashes (segmentation fault) when opening file rfc8655.pdf and other new-format Internet standards
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
evince (Ubuntu) |
Fix Released
|
High
|
Unassigned |
Bug Description
When trying to display the PDF file rfc8655.pdf from https:/
$ evince rfc8655.pdf
Segmentation fault (core dumped)
I would have expected the PDF file to be displayed. Instead, evince crashed and did not display the document.
The built-in PDF renderer of Firefox 70.0 does display the PDF correctly.
Since the segmentation fault hints at a memory management error triggered by external input this may have security implications. I did not investigate this any further. I do not set the "This bug is a security vulnerability" flag because I do not know if it really is (it probably is, but I have no proof) and I do not want this bug report to be private.
$ lsb_release -rd
Description: Ubuntu 18.04.3 LTS
Release: 18.04
$ apt-cache policy evince
evince:
Installed: 3.28.4-0ubuntu1.2
Candidate: 3.28.4-0ubuntu1.2
Version table:
*** 3.28.4-0ubuntu1.2 500
500 http://
500 http://
100 /var/lib/
3.28.2-1 500
500 http://
$ evince --version
GNOME Document Viewer 3.28.4
$ cat /etc/lsb-release
DISTRIB_ID=Ubuntu
DISTRIB_
DISTRIB_
DISTRIB_
This is a fresh install of Ubuntu 18.04 LTS on x86-64 (the upgrade from 16.04 resulted in a non-booting system).
The problem seems to lie in the new format for IETF RFCs, i.e., all official PDF files of RFCs released using the new format result in evince crashes:
https:/ /www.rfc- editor. org/rfc/ rfc8651. pdf /www.rfc- editor. org/rfc/ rfc8653. pdf /www.rfc- editor. org/rfc/ rfc8654. pdf /www.rfc- editor. org/rfc/ rfc8655. pdf
https:/
https:/
https:/
$ ls -a /www.rfc- editor. org/rfc/ rfc8651. pdf https:/ /www.rfc- editor. org/rfc/ rfc8653. pdf https:/ /www.rfc- editor. org/rfc/ rfc8654. pdf https:/ /www.rfc- editor. org/rfc/ rfc8655. pdf /www.rfc- editor. org/rfc/ rfc8651. pdf [137041/137041] -> "rfc8651.pdf" [1] /www.rfc- editor. org/rfc/ rfc8653. pdf [128896/128896] -> "rfc8653.pdf" [1] /www.rfc- editor. org/rfc/ rfc8654. pdf [102866/102866] -> "rfc8654.pdf" [1] /www.rfc- editor. org/rfc/ rfc8655. pdf [325847/325847] -> "rfc8655.pdf" [1]
. ..
$ wget -nv https:/
2019-11-05 09:53:01 URL:https:/
2019-11-05 09:53:02 URL:https:/
2019-11-05 09:53:02 URL:https:/
2019-11-05 09:53:02 URL:https:/
FINISHED --2019-11-05 09:53:02--
Total wall clock time: 2,3s
Downloaded: 4 files, 678K in 1,0s (654 KB/s)
$ evince rfc8651.pdf
Segmentation fault (core dumped)
$ evince rfc8653.pdf
Segmentation fault (core dumped)
$ evince rfc8654.pdf
Segmentation fault (core dumped)
$ evince rfc8655.pdf
Segmentation fault (core dumped)
Older PDFs work fine, e.g., https:/ /www.rfc- editor. org/rfc/ pdfrfc/ rfc8649. txt.pdf .
The built-in PDF viewer of Firefox can display all the above PDF files.
The built-in PDF viewer of Chrome can display all the above PDF files.
The MuPDF PDF viewer can display all the above PDF files.