tetex-bin -- buffer overflows

2006-01-12T00:00:00
ID DSA-937
Type debian
Reporter Debian
Modified 2006-01-12T00:00:00

Description

"infamous41md" and Chris Evans discovered several heap based buffer overflows in xpdf, the Portable Document Format (PDF) suite, which is also present in tetex-bin, the binary files of teTeX, and which can lead to a denial of service by crashing the application or possibly to the execution of arbitrary code.

For the old stable distribution (woody) these problems have been fixed in version 1.0.7+20011202-7.7.

For the stable distribution (sarge) these problems have been fixed in version 2.0.2-30sarge4.

For the unstable distribution (sid) these problems have been fixed in version 0.4.3-2 of poppler against which tetex-bin links.

We recommend that you upgrade your tetex-bin package.