[Bug 1735418] [NEW] [CVE] Command injection with cbt files

Thu, 30 Nov 2017 05:41:14 -0800 

*** This bug is a security vulnerability ***

Public security bug reported:

backend/comics/comics-document.c (aka the comic book backend) in GNOME
Evince before 3.24.1 allows remote attackers to execute arbitrary commands
via a .cbt file that is a TAR archive containing a filename beginning with
a "--" command-line option substring, as demonstrated by a
--checkpoint-action=exec=bash at the beginning of the filename.

** Affects: atril (Ubuntu)
     Importance: Medium
     Assignee: Simon Quigley (tsimonq2)
         Status: Confirmed

** Affects: atril (Ubuntu Xenial)
     Importance: Medium
     Assignee: Simon Quigley (tsimonq2)
         Status: Confirmed

** Affects: atril (Ubuntu Zesty)
     Importance: Medium
     Assignee: Simon Quigley (tsimonq2)
         Status: Confirmed

** Affects: atril (Ubuntu Artful)
     Importance: Medium
     Assignee: Simon Quigley (tsimonq2)
         Status: Confirmed

** Affects: atril (Ubuntu Bionic)
     Importance: Medium
     Assignee: Simon Quigley (tsimonq2)
         Status: Confirmed

** Also affects: atril (Ubuntu Bionic)
   Importance: Undecided
       Status: New

** Also affects: atril (Ubuntu Xenial)
   Importance: Undecided
       Status: New

** Also affects: atril (Ubuntu Artful)
   Importance: Undecided
       Status: New

** Also affects: atril (Ubuntu Zesty)
   Importance: Undecided
       Status: New

** Changed in: atril (Ubuntu Xenial)
       Status: New => Confirmed

** Changed in: atril (Ubuntu Zesty)
       Status: New => Confirmed

** Changed in: atril (Ubuntu Artful)
       Status: New => Confirmed

** Changed in: atril (Ubuntu Bionic)
       Status: New => Confirmed

** Changed in: atril (Ubuntu Xenial)
   Importance: Undecided => Medium

** Changed in: atril (Ubuntu Zesty)
   Importance: Undecided => Medium

** Changed in: atril (Ubuntu Artful)
   Importance: Undecided => Medium

** Changed in: atril (Ubuntu Bionic)
   Importance: Undecided => Medium

** Changed in: atril (Ubuntu Xenial)
     Assignee: (unassigned) => Simon Quigley (tsimonq2)

** Changed in: atril (Ubuntu Zesty)
     Assignee: (unassigned) => Simon Quigley (tsimonq2)

** Changed in: atril (Ubuntu Artful)
     Assignee: (unassigned) => Simon Quigley (tsimonq2)

** Changed in: atril (Ubuntu Bionic)
     Assignee: (unassigned) => Simon Quigley (tsimonq2)

** CVE added: https://cve.mitre.org/cgi-
bin/cvename.cgi?name=2017-1000083

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1735418

Title:
  [CVE] Command injection with cbt files

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/atril/+bug/1735418/+subscriptions

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to