First Last Prev Next    No search results available      Search page      Enter new bug
Bug#: 171799
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Pierre-Yves Rofes <py@gentoo.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 171799 depends on: Show dependency tree
Show dependency graph
Bug 171799 blocks: 154898 160013 162237

Additional Comments: (this is where you put emerge --info)







View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2007-03-22 14:02 0000 
Some vulnerabilities have been reported in Inkscape, which
potentially can be exploited by malicious people to compromise a
user's system.

1) A format string error exists in certain dialogs. This can be
exploited to execute arbitrary code by tricking the user into opening
a specially crafted URI containing format string specifiers.

2) A format string error exists in the Whiteboard Jabber client,
which potentially can be exploited to execute arbitrary code.

Successful exploitation requires that the user is logged in to a
Jabber server.

The vulnerabilities are reported in versions prior to 0.45.1.

SOLUTION:
Update to version 0.45.1.

PROVIDED AND/OR DISCOVERED BY:
Kees Cook

------- Comment #1 From Sune Kloppenborg Jeppesen 2007-03-25 06:27:21 0000 ------- 
graphics please advise and patch as necessary.

------- Comment #2 From Petteri Räty 2007-04-07 13:53:49 0000 ------- 
*** Bug 165715 has been marked as a duplicate of this bug. ***

------- Comment #3 From Petteri Räty 2007-04-07 14:06:41 0000 ------- 
(In reply to comment #1)
> graphics please advise and patch as necessary.
> 

0.45.1 added to the tree. Arches please test and mark stable. Requires a newer
pstoedit stable too as users weren't able to import postscript files with
earlier versions:

betelgeuse@pena /usr/portage/media-gfx/inkscape $ adjutrix -w x86
=media-gfx/inkscape-0.45.1
Package                       Version             Current Keywords  Masks
============================= =================== ================= =========
media-gfx/pstoedit            3.44                ~x86
media-gfx/inkscape            0.45.1              ~x86

------- Comment #4 From Christian Faulhammer 2007-04-07 16:56:33 0000 ------- 
x86 stable

------- Comment #5 From Markus Rothe 2007-04-08 10:46:39 0000 ------- 
ppc64 stable

------- Comment #6 From Tobias Scherbaum 2007-04-08 12:04:21 0000 ------- 
ppc stable

------- Comment #7 From Jeroen Roovers 2007-04-09 04:05:11 0000 ------- 
Stable for HPPA.

------- Comment #8 From Pierre-Yves Rofes 2007-04-09 11:56:01 0000 ------- 
updating status.

------- Comment #9 From Gustavo Zacarias (RETIRED) 2007-04-09 12:26:23 0000 ------- 
sparc stable.

------- Comment #10 From Marcus D. Hanwell 2007-04-09 19:38:58 0000 ------- 
Stable on amd64.

------- Comment #11 From Pierre-Yves Rofes 2007-04-09 19:57:52 0000 ------- 
thanks arches, GLSA in progress...

------- Comment #12 From Matthias Geerdsen 2007-04-16 14:48:10 0000 ------- 
GLSA 200704-10

thanks everyone

------- Comment #13 From Sune Kloppenborg Jeppesen 2007-04-16 16:35:14 0000 ------- 
*** Bug 174815 has been marked as a duplicate of this bug. ***
First Last Prev Next    No search results available      Search page      Enter new bug