CVE-2017-1000083
Description
backend/comics/comics-document.c (aka the comic book backend) in GNOME Evince before 3.24.1 allows remote attackers to execute arbitrary commands via a .cbt file that is a TAR archive containing a filename beginning with a -- command-line option substring, as demonstrated by a --checkpoint-action=exec=bash at the beginning of the filename.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
76.668
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Document viewer (USN-3351-1) evince_3.18.2-1ubuntu4.1_i386.deb | Linux |
| Document viewer (USN-3351-1) evince_3.18.2-1ubuntu4.1_amd64.deb | Linux |
| Document viewer (USN-3351-1) evince_3.22.0-0ubuntu1.1_i386.deb | Linux |
| Document viewer (USN-3351-1) evince_3.22.0-0ubuntu1.1_amd64.deb | Linux |
| Document viewer (USN-3351-1) evince_3.24.0-0ubuntu1.1_i386.deb | Linux |
| Document viewer (USN-3351-1) evince_3.24.0-0ubuntu1.1_amd64.deb | Linux |
| Document viewer (USN-3351-1) evince_3.10.3-0ubuntu10.3_i386.deb | Linux |
| Document viewer (USN-3351-1) evince_3.10.3-0ubuntu10.3_amd64.deb | Linux |
| Document viewer (USN-3351-1) evince-common_3.18.2-1ubuntu4.1_all.deb | Linux |
| Document viewer (USN-3351-1) evince-common_3.22.0-0ubuntu1.1_all.deb | Linux |
| Document viewer (USN-3351-1) evince-common_3.24.0-0ubuntu1.1_all.deb | Linux |
| Document viewer (USN-3351-1) evince-common_3.10.3-0ubuntu10.3_all.deb | Linux |
| (RHSA-2017:2388) Important: evince security update evince-3.22.1-5.2.el7_4.x86_64.rpm | Linux |
| (RHSA-2017:2388) Important: evince security update evince-browser-plugin-3.22.1-5.2.el7_4.x86_64.rpm | Linux |
| (RHSA-2017:2388) Important: evince security update evince-devel-3.22.1-5.2.el7_4.i686.rpm | Linux |
| (RHSA-2017:2388) Important: evince security update evince-devel-3.22.1-5.2.el7_4.x86_64.rpm | Linux |
| (RHSA-2017:2388) Important: evince security update evince-dvi-3.22.1-5.2.el7_4.x86_64.rpm | Linux |
| (RHSA-2017:2388) Important: evince security update evince-libs-3.22.1-5.2.el7_4.i686.rpm | Linux |
| (RHSA-2017:2388) Important: evince security update evince-libs-3.22.1-5.2.el7_4.x86_64.rpm | Linux |
| (RHSA-2017:2388) Important: evince security update evince-nautilus-3.22.1-5.2.el7_4.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) nautilus-evince-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-browser-plugin-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-browser-plugin-debuginfo-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-debuginfo-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-debugsource-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-lang-3.20.2-6.19.15.noarch.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-plugin-djvudocument-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-plugin-djvudocument-debuginfo-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-plugin-dvidocument-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-plugin-dvidocument-debuginfo-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-plugin-pdfdocument-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-plugin-pdfdocument-debuginfo-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-plugin-psdocument-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-plugin-psdocument-debuginfo-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-plugin-tiffdocument-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-plugin-tiffdocument-debuginfo-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-plugin-xpsdocument-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) evince-plugin-xpsdocument-debuginfo-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) libevdocument3-4-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) libevdocument3-4-debuginfo-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) libevview3-3-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) libevview3-3-debuginfo-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) nautilus-evince-debuginfo-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) typelib-1_0-EvinceDocument-3_0-3.20.2-6.19.15.x86_64.rpm | Linux |
| SUSE-SU-2017:3428-1(SUSE Linux Enterprise Desktop 12-SP2 ) typelib-1_0-EvinceView-3_0-3.20.2-6.19.15.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234