CVE-2008-1693

Published: 18 April 2008

The CairoFont::create function in CairoFontEngine.cc in Poppler, possibly before 0.8.0, as used in Xpdf, Evince, ePDFview, KWord, and other applications, does not properly handle embedded fonts in PDF files, which allows remote attackers to execute arbitrary code via a crafted font object, related to dereferencing a function pointer associated with the type of this font object.

Priority

Medium

Status

Package Release Status
gpdf
Launchpad, Ubuntu, Debian
Upstream Needs triage

ipe
Launchpad, Ubuntu, Debian
Upstream Not vulnerable

kdegraphics
Launchpad, Ubuntu, Debian
Upstream Needs triage

koffice
Launchpad, Ubuntu, Debian
Upstream Needed

libextractor
Launchpad, Ubuntu, Debian
Upstream Needs triage

pdfkit.framework
Launchpad, Ubuntu, Debian
Upstream Needs triage

pdftohtml
Launchpad, Ubuntu, Debian
Upstream Needs triage

poppler
Launchpad, Ubuntu, Debian
Upstream
Released (0.6.2)
tetex-bin
Launchpad, Ubuntu, Debian
Upstream Needs triage

texlive-bin
Launchpad, Ubuntu, Debian
Upstream Needs triage

xpdf
Launchpad, Ubuntu, Debian
Upstream
Released (3.02)

Notes

AuthorNote
kees there are two issues -- the specific vulnerability in embedded fonts and the fact that the Object types are unchecked when calling union member functions.
fujitsu libextractor isn't affected by the main CairoFont vulnerability.

References

Bugs