WeSearch

Vulnerabilities in various GTK-based PDF readers

·1 min read · 0 reactions · 0 comments · 28 views
#security#software#vulnerability
TL;DR · WeSearch summary

A command-injection vulnerability has been found in several GTK-based PDF readers. This flaw allows malicious PDFs to execute arbitrary code when opened. The issue is less severe in GTK 4 applications like Papers, compared to older versions used by Evince, Atril, and Xreader.

Key facts
Original article
LWN.net (Linux Weekly News)
Read full at LWN.net (Linux Weekly News) →
Opening excerpt (first ~120 words) tap to expand

Michael Catanzaro has disclosed a command-injection vulnerability affecting a number of GTK-based PDF readers; exploits included: They contain a script for building malicious polyglot PDFs that are simultaneously both valid PDF files and also valid ELF binaries. When the user opens the PDF in the PDF viewer and clicks on a malicious link embedded in the PDF, the PDF abuses the command injection vulnerability to load itself as a GTK module using the `--gtk-module` command line flag. It can then execute arbitrary code via its library constructor. That flag was removed in GTK 4, which is why the vulnerability is much less serious for Papers than it is for Evince, Atril, and Xreader. to post comments

Excerpt limited to ~120 words for fair-use compliance. The full article is at LWN.net (Linux Weekly News).

Anonymous · no account needed
Share 𝕏 Facebook Reddit LinkedIn Threads WhatsApp Bluesky Mastodon Email

Discussion

0 comments