SB2018022727 - Fedora 26 update for leptonica, mingw-leptonica

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2018022727

SB2018022727 - Fedora 26 update for leptonica, mingw-leptonica

Published: February 27, 2018 Updated: April 24, 2025

Security Bulletin ID SB2018022727
CSH Severity
High
Patch available
YES
Number of vulnerabilities 4
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

High 25% Low 75%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 4 vulnerabilities.


1) Path traversal (CVE-ID: CVE-2017-18196)

CWE-ID: CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear


The vulnerability allows a local attacker to obtain potentially sensitive information on the target system.

The weakness exists due to improper security restrictions. A local attacker can access a directory in the /tmp directory tree and gain access to potentially sensitive information, including arbitrary files.

2) Command injection (CVE-ID: CVE-2018-3836)

CWE-ID: CWE-77 - Command injection

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear


The vulnerability allows a remote attacker to inject arbitrary commands.

The weakness exists in the gplotMakeOutput function due to insufficient validation of user-supplied input. A local attacker can submit a specially crafted gplot rootname argument, inject arbitrary commands and execute arbitrary code with system or root privileges.

Successful exploitation of the vulnerabiiity may result in system compromise.

3) Stack-based buffer overflow (CVE-ID: CVE-2018-7186)

CWE-ID: CWE-121 - Stack-based buffer overflow

CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear


The vulnerability allows a remote unauthenticated attacker to cause DoS condition on the target system.

The weakness exists in the gplotRead and ptaReadStream functions due to stack-based buffer overflow. A remote attacker can trigger memory corruption and cause the service to crash.

4) Buffer overflow (CVE-ID: CVE-2018-7247)

CWE-ID: CWE-120 - Buffer overflow

CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber


The vulnerability allows a remote unauthenticated attacker to execute arbitrary code on the target system.

The weakness exists in the pixHtmlViewer function due to buffer overflow. A remote attacker can trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of the vulnerability may result in system compromise.

Remediation

Install update from vendor's website.

References