CVE-2010-2640
EPSS 8.2%evince - several
發布日:2011/1/7修改日:2026/4/28
描述
Array index error in the PK font parser in the dvi-backend component in Evince 2.32 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font in conjunction with a DVI file that is processed by the thumbnailer.
受影響套件(2)
- Debian/evincefrom 0, < 2.30.3-2
- Debian/evincefrom 0, < 2.22.2-4~lenny2