A vulnerability in the Digital Visual Interface (DVI) exporter of Evince could allow a local attacker to conduct a command injection attack on a targeted system