Gentoo Bug 141684 - media-gfx/fbida: typo prevents filtering (CVE-2006-3119)

First Last Prev Next No search results available Search page Enter new bug

Bug#:	141684
Alias:
Product:
Component:
Status:	RESOLVED
Resolution:	FIXED
Assigned To:	Gentoo Security <security@gentoo.org>

Hardware:
OS:
Version:
Priority:
Severity:

Reporter:	Stefan Cornelius (RETIRED) <dercorny@gentoo.org>
Add CC:
CC:	Remove selected CCs

URL:
Summary:
Status Whiteboard:
Keywords:

Flags:			Requestee:
	Pending
	Approved
	Assigned_To		()

Filename	Description	Type	Creator	Created	Size	Actions
Create a New Attachment (proposed patch, testcase, etc.)						View All

Bug 141684 depends on:			Show dependency tree
Bug 141684 blocks:			Show dependency tree

Additional Comments: (this is where you put emerge --info)

Add to CC list

Not eligible to see or edit group visibility for this bug.

Leave as RESOLVED FIXED
Reopen bug
Mark bug as VERIFIED
Mark bug as CLOSED

View Bug Activity | Format For Printing | XML | Clone This Bug

Description:

Opened: 2006-07-25 03:06 0000

gs is not called with -dSAFER because of a typo, which might allow pdf files to
do evil stuff.

This is fixed in version 2.05. Either dump or apply this simple patch (gained
from a diff 2.04->2.05):

--- fbida-2.04/fbgs     2006-04-10 09:43:01.000000000 +0200
+++ fbida-2.05/fbgs     2006-07-25 09:26:16.000000000 +0200
@@ -51,7 +51,7 @@
 echo
 echo "### rendering pages, please wait ... ###"
 echo
-gs     -dSAVER -dNOPAUSE -dBATCH                       \
+gs     -dSAFER -dNOPAUSE -dBATCH                       \
        -sPDFPassword="$password"                       \
        -sDEVICE=${device} -sOutputFile=$DIR/ps%03d.tiff \
        $gsopts                                         \

------- Comment #1 From Thierry Carrez (RETIRED) 2006-07-29 05:37:50 0000 -------

spock please bump with patch.

------- Comment #2 From Michal Januszewski 2006-08-07 17:59:38 0000 -------

Fixed in CVS, thanks.

------- Comment #3 From Thierry Carrez (RETIRED) 2006-08-12 08:17:34 0000 -------

Fixed in 2.03-r4, already stable, thanks Michal.

The "?" in B2? calls for a vote, I'd say this warrants a GLSA

------- Comment #4 From Raphael Marichez 2006-08-16 01:54:12 0000 -------

yes

does "pdf files to do evif stuff" means code execution ? (==> B2 sure)

------- Comment #5 From Sune Kloppenborg Jeppesen 2006-08-19 09:25:26 0000 -------

Let's have a GLSA on this one as well.

------- Comment #6 From Raphael Marichez 2006-08-23 13:02:08 0000 -------

GLSA 200608-22

thanks everybody

First Last Prev Next No search results available Search page Enter new bug

Bugzilla Bug 141684

media-gfx/fbida: typo prevents filtering (CVE-2006-3119)

Last modified: 2006-08-23 13:02:08 0000