CVE-2010-2641

Name of the Vulnerable Software and Affected Versions Evince versions 2.32 and earlier

Description The issue is related to an array index error in the VF font parser within the dvi-backend component. This error can be triggered by remote attackers using a crafted font in conjunction with a DVI file that is processed by the thumbnailer, potentially leading to a denial of service (application crash) or possibly the execution of arbitrary code.

Recommendations For Evince versions 2.32 and earlier, consider updating to a version that addresses this issue, as no specific workaround is provided for these versions. At the moment, there is no information about a newer version that contains a fix for this vulnerability.