Bug 469875 (CVE-2008-4812)

Summary: CVE-2008-4812 Adobe Reader: embedded font handling out-of-bounds array indexing
Product: [Other] Security Response Reporter: Josh Bressers <bressers>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED ERRATA QA Contact:
Severity: urgent Docs Contact:
Priority: urgent    
Version: unspecifiedCC: bressers, kreilly, krh
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
URL: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4812
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2008-11-13 15:36:16 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 469916, 469917, 469918    
Bug Blocks:    

Description Josh Bressers 2008-11-04 16:05:02 UTC 
Adobe Reader 8 contains multiple input validation errors.  According to
Adobe these flaws could result in arbitrary code execution with the
permissions of the user running Adobe Reader.
Comment 2 Tomas Hoger 2008-11-05 08:51:10 UTC 
Public now via upstream security bulletin:
  http://www.adobe.com/support/security/bulletins/apsb08-19.html

Additional details from iDefense advisory:
  http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=755
  http://marc.info/?l=full-disclosure&m=122583271427154&w=4

  The vulnerability specifically exists in code responsible for parsing Type 1
  fonts. After allocating an area of memory, no bounds checking is performed.
  Subsequent access of this memory may result in modification of arbitrary
  memory, which in turn may result in arbitrary code execution.
Comment 4 Red Hat Product Security 2008-11-13 15:36:16 UTC 
This issue was addressed in:

Red Hat Enterprise Linux Extras:
  http://rhn.redhat.com/errata/RHSA-2008-0974.html