CVE-2010-2641
EPSS 8.2%Published: 1/7/2011Modified: 4/28/2026
Description
Array index error in the VF font parser in the dvi-backend component in Evince 2.32 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font in conjunction with a DVI file that is processed by the thumbnailer.
Affected packages (1)
- Debian/evincefrom 0, < 2.30.3-2