FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  456342
Date:      2017-12-14
Time:      19:44:02Z
Committer: bhughes

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
01a197ca-67f1-11e7-a266-28924a333806evince and atril -- command injection vulnerability in CBT handler

GNOME reports:

The comic book backend in evince 3.24.0 (and earlier) is vulnerable to a command injection bug that can be used to execute arbitrary commands when a CBT file is opened.

The same vulnerabilty affects atril, the Evince fork.


Discovery 2017-07-06
Entry 2017-07-13
evince
le 3.24.0

evince-lite
le 3.24.0

atril
lt 1.18.1

ge 1.19.0 lt 1.19.1

atril-lite
lt 1.18.1

ge 1.19.0 lt 1.19.1

https://bugzilla.gnome.org/show_bug.cgi?id=784630
https://github.com/mate-desktop/atril/issues/257
CVE-2017-1000083