VDB

DEBIAN-CVE-2019-11459

DEBIAN-CVE-2019-11459 PUBLISHED CVSS 5.5 MEDIUM

The tiff_document_render() and tiff_document_get_thumbnail() functions in the TIFF document backend in GNOME Evince through 3.32.0 did not handle errors from TIFFReadRGBAImageOriented(), leading to uninitialized memory use when processing certain TIFF image files.

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Affected Products

VendorProductVersions
Debian:12evince0, 0, 0
Debian:12atril0, 0, 0
Debian:11evince0, 0, 0
Debian:13evince0, 0, 0
Debian:11atril0, 0, 0
Debian:13atril0, 0, 0
Debian:14evince0, 0, 0
Debian:14atril0, 0, 0

Timeline

  • Apr 22, 2019 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›