Lucene search
Gentoo FoundationGLSA-201701-57HistoryJan 23, 2017 - 12:00 a.m.
T1Lib: : Multiple vulnerabilities
2017-01-2300:00:00
Gentoo Foundation
security.gentoo.org
14
0.278 Low
EPSS
Percentile
96.8%
Background
T1Lib is a library for rasterizing bitmaps from Adobe Type 1 fonts.
Description
Multiple vulnerabilities have been discovered in T1Lib. Please review the CVE identifiers referenced below for details.
Impact
Remote attackers, by coercing users to process specially crafted AFM font or PDF file, could cause a Denial of Service condition or execute arbitrary code.
Workaround
There is no known workaround at this time.
Resolution
All T1Lib users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=media-libs/t1lib-5.1.2-r1"
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Gentoo | any | all | media-libs/t1lib | <Â 5.1.2-r1 | UNKNOWN |
Related
nessus
nessus
GLSA-201701-57 : T1Lib: : Multiple vulnerabilities
2017-01-24 00:00:00
Oracle Linux 6 : t1lib (ELSA-2012-0062)
2013-07-12 00:00:00
Scientific Linux Security Update : t1lib on SL6.x i386/x86_64 (20120124)
2012-08-01 00:00:00
openvas
openvas
Mandriva Update for t1lib MDVSA-2012:004 (t1lib)
2012-01-13 00:00:00
Debian Security Advisory DSA 2388-1 (t1lib)
2012-02-11 00:00:00
Fedora Update for t1lib FEDORA-2012-0266
2012-02-01 00:00:00
oraclelinux
oraclelinux
texlive security update
2012-02-15 00:00:00
t1lib security update
2012-01-24 00:00:00
tetex security update
2012-08-23 00:00:00
amazon
amazon
Medium: texlive
2012-03-04 16:08:00
Medium: t1lib
2012-02-02 14:26:00
redhat
redhat
(RHSA-2012:0137) Moderate: texlive security update
2012-02-15 00:00:00
(RHSA-2012:0062) Moderate: t1lib security update
2012-01-24 00:00:00
(RHSA-2012:1201) Moderate: tetex security update
2012-08-23 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: t1lib-5.1.2-9.fc15
2012-01-28 03:28:44
[SECURITY] Fedora 16 Update: t1lib-5.1.2-9.fc16
2012-01-28 03:23:39
[SECURITY] Fedora 13 Update: evince-2.30.3-2.fc13
2011-01-12 05:23:01
debian
debian
[SECURITY] [DSA 2388-1] t1lib security update
2012-01-15 10:26:10
[SECURITY] [DSA 2357-1] evince security update
2011-12-04 10:54:47
centos
centos
kpathsea, mendexk, texlive security update
2012-02-16 13:36:55
t1lib security update
2012-01-30 20:25:25
tetex security update
2012-08-23 23:12:26
osv
osv
t1lib - several
2012-01-14 00:00:00
evince - several
2011-12-03 00:00:00
ubuntu
ubuntu
t1lib vulnerabilities
2012-01-19 00:00:00
t1lib vulnerability
2011-12-21 00:00:00
Evince vulnerability
2012-01-25 00:00:00
slackware
slackware
[slackware-security] t1lib
2012-08-16 06:32:38
securityvulns
securityvulns
t1lib / xpdf library multiple security vulnerabilities
2012-01-16 00:00:00
TSSA-2011-01 xpdf : multiple vulnerabilities allow remote code execution
2011-03-29 00:00:00
[USN-1035-1] Evince vulnerabilities
2011-01-07 00:00:00
cvelist
cvelist
ubuntucve
ubuntucve
prion
prion
Code injection
2012-11-19 12:10:00
Integer overflow
2011-03-31 23:55:00
Heap overflow
2012-11-19 12:10:00
debiancve
debiancve
cve
cve
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:07:02
Denial Of Service (DoS)
2020-04-10 01:07:01
Denial Of Service (DoS)
2020-04-10 01:07:02
cbl_mariner
cbl_mariner
CVE-2011-5244 affecting package t1lib 5.1.2-28
2024-05-19 09:07:22
CVE-2010-2642 affecting package t1lib 5.1.2-28
2024-05-19 09:07:22
CVE-2011-0433 affecting package t1lib 5.1.2-28
2024-05-19 09:07:22
cert
cert
Foolabs Xpdf contains a denial of service vulnerability
2011-03-21 00:00:00
gentoo
gentoo
Evince: Multiple vulnerabilities
2011-11-20 00:00:00