Ubuntu
calibre package

[CVE] Use JSON to prevent malicious bookmark files from causing code execution

Bug #1758703 reported by Simon Quigley
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
calibre (Ubuntu)
Fix Released
High
Unassigned
Artful
New
High
Simon Quigley

Bug Description

gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls cPickle.load on imported bookmark data, which allows remote attackers to execute arbitrary code via a crafted .pickle file, as demonstrated by Python code that contains an os.system call.

Simon Quigley (tsimonq2)
Changed in calibre (Ubuntu Artful):
importance: Undecided → High
assignee: nobody → Simon Quigley (tsimonq2)
Changed in calibre (Ubuntu):
status: New → Fix Released
importance: Undecided → High
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.