VDB
DEBIAN-CVE-2019-11459
DEBIAN-CVE-2019-11459
PUBLISHED
CVSS 5.5 MEDIUM
The tiff_document_render() and tiff_document_get_thumbnail() functions in the TIFF document backend in GNOME Evince through 3.32.0 did not handle errors from TIFFReadRGBAImageOriented(), leading to uninitialized memory use when processing certain TIFF image files.
Risk Scores
CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:12 | evince | 0, 0, 0 |
| Debian:12 | atril | 0, 0, 0 |
| Debian:11 | evince | 0, 0, 0 |
| Debian:13 | evince | 0, 0, 0 |
| Debian:11 | atril | 0, 0, 0 |
| Debian:13 | atril | 0, 0, 0 |
| Debian:14 | evince | 0, 0, 0 |
| Debian:14 | atril | 0, 0, 0 |
Timeline
- Apr 22, 2019 CVE Published
- Apr 28, 2026 CVE Updated