Security Advisory Critical: acroread security update

Advisory: RHSA-2008:0974-5
Type: Security Advisory
Severity: Critical
Issued on: 2008-11-12
Last updated on: 2008-11-12
Affected Products: RHEL Desktop Supplementary (v. 5 client)
RHEL Supplementary (v. 5 server)
RHEL Supplementary EUS (v. 5.2.z server)
Red Hat Enterprise Linux Extras (v. 3)
Red Hat Enterprise Linux Extras (v. 4)
Red Hat Enterprise Linux Extras (v. 4.7.z)
OVAL: N/A
CVEs (cve.mitre.org): CVE-2008-2549
CVE-2008-2992
CVE-2008-4812
CVE-2008-4813
CVE-2008-4814
CVE-2008-4815
CVE-2008-4817
CVE-2009-0927

Details

Updated acroread packages that fix various security issues are now
available for Red Hat Enterprise Linux 3 Extras, Red Hat Enterprise Linux 4
Extras, and Red Hat Enterprise Linux 5 Supplementary.

This update has been rated as having critical security impact by the Red
Hat Security Response Team.

Adobe Reader allows users to view and print documents in Portable Document
Format (PDF).

Several input validation flaws were discovered in Adobe Reader. A malicious
PDF file could cause Adobe Reader to crash or, potentially, execute
arbitrary code as the user running Adobe Reader. (CVE-2008-2549,
CVE-2008-2992, CVE-2008-4812, CVE-2008-4813, CVE-2008-4814, CVE-2008-4817)

The Adobe Reader binary had an insecure relative RPATH (runtime library
search path) set in the ELF (Executable and Linking Format) header. A local
attacker able to convince another user to run Adobe Reader in an
attacker-controlled directory could run arbitrary code with the privileges
of the victim. (CVE-2008-4815)

All acroread users are advised to upgrade to these updated packages, that
contain Adobe Reader version 8.1.3, and are not vulnerable to these issues.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Updated packages

RHEL Desktop Supplementary (v. 5 client)
IA-32:
acroread-8.1.3-1.el5.i386.rpm
File outdated by:  RHSA-2009:1499		     5c768fc09b95e6357c6f88d1e5cd0516
acroread-plugin-8.1.3-1.el5.i386.rpm
File outdated by:  RHSA-2009:1499		     b27650ad473e1968d95fbe56dc172193
 
x86_64:
acroread-8.1.3-1.el5.i386.rpm
File outdated by:  RHSA-2009:1499		     5c768fc09b95e6357c6f88d1e5cd0516
acroread-plugin-8.1.3-1.el5.i386.rpm
File outdated by:  RHSA-2009:1499		     b27650ad473e1968d95fbe56dc172193
 
RHEL Supplementary (v. 5 server)
IA-32:
acroread-8.1.3-1.el5.i386.rpm
File outdated by:  RHSA-2009:1499		     5c768fc09b95e6357c6f88d1e5cd0516
acroread-plugin-8.1.3-1.el5.i386.rpm
File outdated by:  RHSA-2009:1499		     b27650ad473e1968d95fbe56dc172193
 
x86_64:
acroread-8.1.3-1.el5.i386.rpm
File outdated by:  RHSA-2009:1499		     5c768fc09b95e6357c6f88d1e5cd0516
acroread-plugin-8.1.3-1.el5.i386.rpm
File outdated by:  RHSA-2009:1499		     b27650ad473e1968d95fbe56dc172193
 
RHEL Supplementary EUS (v. 5.2.z server)
IA-32:
acroread-8.1.3-1.el5.i386.rpm     5c768fc09b95e6357c6f88d1e5cd0516
acroread-plugin-8.1.3-1.el5.i386.rpm     b27650ad473e1968d95fbe56dc172193
 
x86_64:
acroread-8.1.3-1.el5.i386.rpm     5c768fc09b95e6357c6f88d1e5cd0516
acroread-plugin-8.1.3-1.el5.i386.rpm     b27650ad473e1968d95fbe56dc172193
 
Red Hat Enterprise Linux Extras (v. 3)
IA-32:
acroread-8.1.3-1.i386.rpm
File outdated by:  RHSA-2009:1499		     786014a0752769bfc9d70fb0ada19128
acroread-8.1.3-1.i386.rpm
File outdated by:  RHSA-2009:1499		     786014a0752769bfc9d70fb0ada19128
acroread-8.1.3-1.i386.rpm
File outdated by:  RHSA-2009:1499		     786014a0752769bfc9d70fb0ada19128
acroread-8.1.3-1.i386.rpm
File outdated by:  RHSA-2009:1499		     786014a0752769bfc9d70fb0ada19128
acroread-plugin-8.1.3-1.i386.rpm
File outdated by:  RHSA-2009:1499		     943988eac556254d02fa65ff4f9f3c89
acroread-plugin-8.1.3-1.i386.rpm
File outdated by:  RHSA-2009:1499		     943988eac556254d02fa65ff4f9f3c89
acroread-plugin-8.1.3-1.i386.rpm
File outdated by:  RHSA-2009:1499		     943988eac556254d02fa65ff4f9f3c89
acroread-plugin-8.1.3-1.i386.rpm
File outdated by:  RHSA-2009:1499		     943988eac556254d02fa65ff4f9f3c89
 
x86_64:
acroread-8.1.3-1.i386.rpm
File outdated by:  RHSA-2009:1499		     786014a0752769bfc9d70fb0ada19128
acroread-8.1.3-1.i386.rpm
File outdated by:  RHSA-2009:1499		     786014a0752769bfc9d70fb0ada19128
acroread-8.1.3-1.i386.rpm
File outdated by:  RHSA-2009:1499		     786014a0752769bfc9d70fb0ada19128
acroread-8.1.3-1.i386.rpm
File outdated by:  RHSA-2009:1499		     786014a0752769bfc9d70fb0ada19128
 
Red Hat Enterprise Linux Extras (v. 4)
IA-32:
acroread-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:1499		     ec9031b68f8e710a7ef1ee68073fe6a7
acroread-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:1499		     ec9031b68f8e710a7ef1ee68073fe6a7
acroread-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:1499		     ec9031b68f8e710a7ef1ee68073fe6a7
acroread-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:1499		     ec9031b68f8e710a7ef1ee68073fe6a7
acroread-plugin-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:1499		     cd84520d48dfdd22eda00d29325f9038
acroread-plugin-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:1499		     cd84520d48dfdd22eda00d29325f9038
acroread-plugin-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:1499		     cd84520d48dfdd22eda00d29325f9038
acroread-plugin-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:1499		     cd84520d48dfdd22eda00d29325f9038
 
x86_64:
acroread-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:1499		     ec9031b68f8e710a7ef1ee68073fe6a7
acroread-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:1499		     ec9031b68f8e710a7ef1ee68073fe6a7
acroread-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:1499		     ec9031b68f8e710a7ef1ee68073fe6a7
acroread-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:1499		     ec9031b68f8e710a7ef1ee68073fe6a7
 
Red Hat Enterprise Linux Extras (v. 4.7.z)
IA-32:
acroread-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:0478		     ec9031b68f8e710a7ef1ee68073fe6a7
acroread-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:0478		     ec9031b68f8e710a7ef1ee68073fe6a7
acroread-plugin-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:0478		     cd84520d48dfdd22eda00d29325f9038
acroread-plugin-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:0478		     cd84520d48dfdd22eda00d29325f9038
 
x86_64:
acroread-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:0478		     ec9031b68f8e710a7ef1ee68073fe6a7
acroread-8.1.3-1.el4.i386.rpm
File outdated by:  RHSA-2009:0478		     ec9031b68f8e710a7ef1ee68073fe6a7
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

450078 - CVE-2008-2549 acroread: crash and possible code execution
469875 - CVE-2008-4812 Adobe Reader: embedded font handling out-of-bounds array indexing
469876 - CVE-2008-4813 Adobe Reader: PDF objects parsing and JavaScript getCosObj handling memory corruption flaw
469877 - CVE-2008-2992 Adobe Reader: JavaScript util.printf() function buffer overflow
469880 - CVE-2008-4814 Adobe Reader: arbitrary code execution via unspecified JavaScript method
469882 - CVE-2008-4815 Adobe Reader: insecure RPATH flaw
469923 - CVE-2008-4817 Adobe Reader: Download Manager input validation flaw


References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2549
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2992
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4812
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4813
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4814
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4815
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4817
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0927

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/