Bug 434212

Summary: SECURITY: shadow attacks and compromised digital integrity of PDFs
Product: [Applications] okular Reporter: Daniel Duris <kdebugs>
Component: PDF backendAssignee: Okular developers <okular-devel>
Status: RESOLVED FIXED    
Severity: grave CC: aacid, nate
Priority: NOR    
Version First Reported In: 20.12.3   
Target Milestone: ---   
Platform: Other   
OS: Linux   
Latest Commit: Version Fixed In:
Sentry Crash Report:

Description Daniel Duris 2021-03-09 23:48:06 UTC 
SUMMARY
See vulnerabilities listed for Okular: https://thehackernews.com/2021/02/shadow-attacks-let-attackers-replace.html
Comment 1 Albert Astals Cid 2021-03-10 00:07:04 UTC 
This is really old, we have fixed them all as far as I understand.

Please use security@kde.org to report security issues in the future.