Bug 175105
Summary: | CVE-2005-3193 xpdf issues (CVE-2005-3191 CVE-2005-3192 CVE-2005-3624 CVE-2005-3625 CVE-2005-3626 CVE-2005-3627 CVE-2005-3628) | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
Product: | Red Hat Enterprise Linux 4 | Reporter: | Josh Bressers <bressers> | ||||||||
Component: | kdegraphics | Assignee: | Than Ngo <than> | ||||||||
Status: | CLOSED WORKSFORME | QA Contact: | |||||||||
Severity: | high | Docs Contact: | |||||||||
Priority: | medium | ||||||||||
Version: | 4.0 | CC: | jhutar, security-response-team, thoger | ||||||||
Target Milestone: | --- | Keywords: | Reopened, Security | ||||||||
Target Release: | --- | ||||||||||
Hardware: | All | ||||||||||
OS: | Linux | ||||||||||
Whiteboard: | impact=important,reported=20051103,public=20051206 | ||||||||||
Fixed In Version: | RHSA-2005-868 | Doc Type: | Bug Fix | ||||||||
Doc Text: | Story Points: | --- | |||||||||
Clone Of: | Environment: | ||||||||||
Last Closed: | 2007-11-07 14:52:20 UTC | Type: | --- | ||||||||
Regression: | --- | Mount Type: | --- | ||||||||
Documentation: | --- | CRM: | |||||||||
Verified Versions: | Category: | --- | |||||||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||||
Cloudforms Team: | --- | Target Upstream Version: | |||||||||
Embargoed: | |||||||||||
Attachments: |
|
Description
Josh Bressers
2005-12-06 17:46:59 UTC
Than, If you can roll up some packages, I'll deal with the errata. Attachment 121940 [details] contains a more complete patch which was taken from our recent
xpdf update.
Josh, kpdf is included in kdegraphics version > 3.3.x, it's also effected in RHEL4 and FC3/FC4. I have built new kdegraphics in dist-4E-errata-candidate. It would be great if you could create errata text for this please. Thanks An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2005-868.html It has come to our attention that CVE-2005-3627 was not properly fixed. Created attachment 125771 [details]
Complete patch from xpdf
Here is the complete patch from xpdf upstream. The patch used for kpdf missed
some bits of this.
Created attachment 125772 [details] Reproducer from Chris Evans Here is Chris' original advisory, it has links to various other bad pdf files. http://scary.beasts.org/security/CESA-2005-003.txt I've filed bug 184307 to cover the incomplete fix rather than reusing this bug. Created attachment 248491 [details] back-trace /usr/bin/kpdf --nocrashhandler bz175105.pdf kdegraphics-3.5.4-4.el5_1.i386 it's strange, the bug is only affected in RHEL-4/RHEL-3/RHEL-2 with kdegraphics <= 3.5.0, which was fixed long ago. This security issue is not affected in RHEL-5 with kdegraphic-3.5.4! I cannot reproduce the crash with kdegraphics-3_3_1-6_el4_5 and kdegraphics-3_5_4-4_el5_1! It seems your testenviroment is broken. Could you please check your testenviroment again? Thanks |