| Name | CVE-2008-1693 |
| Description | The CairoFont::create function in CairoFontEngine.cc in Poppler, possibly before 0.8.0, as used in Xpdf, Evince, ePDFview, KWord, and other applications, does not properly handle embedded fonts in PDF files, which allows remote attackers to execute arbitrary code via a crafted font object, related to dereferencing a function pointer associated with the type of this font object. |
| Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
| References | DSA-1548-1, DSA-1606-1 |
| Debian Bugs | 476842 |
The table below lists information on source packages.
| Source Package | Release | Version | Status |
|---|---|---|---|
| poppler (PTS) | jessie, jessie (lts) | 0.26.5-2+deb8u16 | fixed |
| stretch (security) | 0.48.0-2+deb9u4 | fixed | |
| stretch (lts), stretch | 0.48.0-2+deb9u6 | fixed | |
| buster | 0.71.0-5 | fixed | |
| buster (security) | 0.71.0-5+deb10u3 | fixed | |
| bullseye (security), bullseye | 20.09.0-3.1+deb11u1 | fixed | |
| trixie, bookworm | 22.12.0-2 | fixed | |
| sid | 22.12.0-2.2 | fixed | |
| swftools (PTS) | jessie | 0.9.2+git20130725-2 | fixed |
| stretch | 0.9.2+git20130725-4.1 | fixed | |
| texlive-base (PTS) | jessie, jessie (lts) | 2014.20141024-2+deb8u1 | fixed |
| stretch | 2016.20170123-5 | fixed | |
| buster | 2018.20190227-2 | fixed | |
| bullseye | 2020.20210202-3 | fixed | |
| bookworm | 2022.20230122-3 | fixed | |
| sid, trixie | 2023.20240207-1 | fixed | |
| texlive-bin (PTS) | jessie, jessie (lts) | 2014.20140926.35254-6+deb8u1 | fixed |
| stretch (security), stretch (lts), stretch | 2016.20160513.41080.dfsg-2+deb9u1 | fixed | |
| buster | 2018.20181218.49446-1 | fixed | |
| buster (security) | 2018.20181218.49446-1+deb10u2 | fixed | |
| bullseye (security), bullseye | 2020.20200327.54578-7+deb11u1 | fixed | |
| bookworm | 2022.20220321.62855-5.1+deb12u1 | fixed | |
| sid, trixie | 2023.20230311.66589-9 | fixed | |
| xpdf (PTS) | jessie | 3.03-17 | fixed |
| stretch | 3.04-4 | fixed | |
| buster | 3.04-13 | fixed | |
| bullseye | 3.04+git20210103-3 | fixed | |
| bookworm | 3.04+git20220601-1 | fixed | |
| sid, trixie | 3.04+git20240202-1 | fixed |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|---|---|---|---|---|---|
| kdegraphics | source | (unstable) | (not affected) | |||
| poppler | source | etch | 0.4.5-5.1etch3 | DSA-1606-1 | ||
| poppler | source | (unstable) | 0.6.4-1 | 476842 | ||
| swftools | source | (unstable) | (not affected) | |||
| texlive-base | source | (unstable) | (not affected) | |||
| texlive-bin | source | (unstable) | (not affected) | |||
| xpdf | source | etch | 3.01-9.1+etch3 | DSA-1548-1 | ||
| xpdf | source | (unstable) | 3.02 |
- kdegraphics <not-affected> (Vulnerable code not present)
- texlive-bin <not-affected> (code already has the needed fix)
see GfxFont.cc GfxFont::readEmbFontFile, line 362 checks if the font file is
a stream or not. Anyone knows a fixed version?
- texlive-base <not-affected> (Vulnerable code not present)
- swftools <not-affected> (Vulnerable file/code not present)