Vulners
Lucene search
MiracleLinux 3 : tetex-3.0-33.8.5.0.1.AXS3 (AXSA:2010-276:02)
| Reporter | Title | Published | Views | Family All 876 |
|---|---|---|---|---|
 | Security fix for the ALT Linux 5 package xpdf version 3.02-alt5 | 22 Apr 200900:00 | – | altlinux |
| Security fix for the ALT Linux 5 package kdegraphics version 3.5.10-alt1.1 | 20 Apr 200900:00 | – | altlinux |
| Security fix for the ALT Linux 5 package xpdf version 3.02-alt7 | 15 Nov 200900:00 | – | altlinux |
| Security fix for the ALT Linux 5 package poppler5 version 0.12.1-alt1 | 19 Oct 200900:00 | – | altlinux |
| Security fix for the ALT Linux 5 package kdegraphics version 3.5.10-alt3 | 19 Oct 200900:00 | – | altlinux |
| Security fix for the ALT Linux 5 package poppler5 version 0.10.6-alt1 | 20 Apr 200900:00 | – | altlinux |
 | CUPS < 1.3.10 Multiple Overflows | 1 Dec 200800:00 | – | nessus |
| Mac OS X 10.5 < 10.5.7 Multiple Vulnerabilities | 18 Aug 200400:00 | – | nessus |
| CentOS 4 / 5 : cups (CESA-2009:0429) | 26 May 200900:00 | – | nessus |
| CentOS 3 / 4 : xpdf (CESA-2009:0430) | 21 Apr 200900:00 | – | nessus |
10
10
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# Miracle Linux Security Advisory AXSA:2010-276:02.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(284503);
script_version("1.1");
script_set_attribute(attribute:"plugin_modification_date", value:"2026/01/14");
script_cve_id(
"CVE-2009-0146",
"CVE-2009-0147",
"CVE-2009-0166",
"CVE-2009-0195",
"CVE-2009-0791",
"CVE-2009-0799",
"CVE-2009-0800",
"CVE-2009-1179",
"CVE-2009-1180",
"CVE-2009-1181",
"CVE-2009-1182",
"CVE-2009-1183",
"CVE-2009-3608",
"CVE-2009-3609",
"CVE-2010-0739",
"CVE-2010-0829",
"CVE-2010-1440"
);
script_name(english:"MiracleLinux 3 : tetex-3.0-33.8.5.0.1.AXS3 (AXSA:2010-276:02)");
script_set_attribute(attribute:"synopsis", value:
"The remote MiracleLinux host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the
AXSA:2010-276:02 advisory.
TeTeX is an implementation of TeX for Linux or UNIX systems. TeX takes a text file and a set of formatting
commands as input and creates a typesetter-independent .dvi (DeVice Independent) file as output. Usually,
TeX is used in conjunction with a higher level formatting package like LaTeX or PlainTeX, since TeX by
itself is not very user-friendly. The output format needn't to be DVI, but also PDF, when using pdflatex
or similar tools.
Install tetex if you want to use the TeX text formatting system. Consider to install tetex-latex (a higher
level formatting package which provides an easier-to-use interface for TeX). Unless you are an expert at
using TeX, you should also install the tetex-doc package, which includes the documentation for TeX.
Security issues fixed with this release:
CVE-2009-0146
Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and
other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related
to (1) JBIG2SymbolDict::setBitmap and (2) JBIG2Stream::readSymbolDictSeg.
CVE-2009-0147
Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and
other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related
to (1) JBIG2Stream::readSymbolDictSeg, (2) JBIG2Stream::readSymbolDictSeg, and (3)
JBIG2Stream::readGenericBitmap.
CVE-2009-0166
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote
attackers to cause a denial of service (crash) via a crafted PDF file that triggers a free of
uninitialized memory.
CVE-2009-0195
Heap-based buffer overflow in Xpdf 3.02pl2 and earlier, CUPS 1.3.9, and probably other products, allows
remote attackers to execute arbitrary code via a PDF file with crafted JBIG2 symbol dictionary segments.
CVE-2009-0791
Multiple integer overflows in Xpdf 2.x and 3.x and Poppler 0.x, as used in the pdftops filter in CUPS
1.1.17, 1.1.22, and 1.3.7, GPdf, and kdegraphics KPDF, allow remote attackers to cause a denial of service
(application crash) or possibly execute arbitrary code via a crafted PDF file that triggers a heap-based
buffer overflow, possibly related to (1) Decrypt.cxx, (2) FoFiTrueType.cxx, (3) gmem.c, (4)
JBIG2Stream.cxx, and (5) PSOutputDev.cxx in pdftops/. NOTE: the JBIG2Stream.cxx vector may overlap
CVE-2009-1179.
CVE-2009-0799
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other
products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers
an out-of-bounds read.
CVE-2009-0800
Multiple 'input validation flaws' in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and
earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a
crafted PDF file.
CVE-2009-1179
Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before
0.10.6, and other products allows remote attackers to execute arbitrary code via a crafted PDF file.
CVE-2009-1180
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other
products allows remote attackers to execute arbitrary code via a crafted PDF file that triggers a free of
invalid data.
CVE-2009-1181
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other
products allows remote attackers to cause a denial of service (crash) via a crafted PDF file that triggers
a NULL pointer dereference.
CVE-2009-1182
Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier,
Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted
PDF file.
CVE-2009-1183
The JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and
other products allows remote attackers to cause a denial of service (infinite loop and hang) via a crafted
PDF file.
CVE-2009-3608
Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x before 3.02pl4 and
Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote
attackers to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.
CVE-2009-3609
Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler
before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a
denial of service (application crash) via a crafted PDF document that triggers a NULL pointer dereference
or buffer over-read.
CVE-2010-0739
Integer overflow in the predospecial function in dospecial.c in dvips in (1) TeX Live and (2) teTeX might
allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a
heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
CVE-2010-0829
Multiple array index errors in set.c in dvipng 1.11 and 1.12, and teTeX, allow remote attackers to cause a
denial of service (application crash) or possibly execute arbitrary code via a malformed DVI file.
CVE-2010-1440
Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow
remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a
special command in a DVI file, related to the (1) predospecial and (2) bbdospecial functions, a different
vulnerability than CVE-2010-0739.
Tenable has extracted the preceding description block directly from the MiracleLinux security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://tsn.miraclelinux.com/en/node/1433");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2009-3608");
script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2009-3609");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vendor_severity", value:"High");
script_set_attribute(attribute:"vuln_publication_date", value:"2009/04/16");
script_set_attribute(attribute:"patch_publication_date", value:"2010/05/13");
script_set_attribute(attribute:"plugin_publication_date", value:"2026/01/14");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:tetex");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:tetex-dvips");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:tetex-fonts");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:tetex-latex");
script_set_attribute(attribute:"cpe", value:"cpe:/o:miracle:linux:3");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Miracle Linux Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/MiracleLinux/release", "Host/MiracleLinux/rpm-list", "Host/cpu");
exit(0);
}
include('rpm2.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_product = get_kb_item('installed_os/local/SSH/0/product');
if (isnull(os_product) || 'MIRACLE LINUX' >!< os_product) audit(AUDIT_OS_NOT, 'MIRACLE LINUX');
var os_version = get_kb_item('installed_os/local/SSH/0/version');
if (isnull(os_version)) audit(AUDIT_UNKNOWN_APP_VER, 'MIRACLE LINUX');
if (! preg(pattern:"^3([^0-9]|$)", string:os_version)) audit(AUDIT_OS_NOT, 'MiracleLinux 3.x', 'MIRACLE LINUX ' + os_version);
if (!get_kb_item('Host/MiracleLinux/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('aarch64' >!< cpu && 'ppc' >!< cpu && 's390' >!< cpu && 'x86_64' >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'MIRACLE LINUX', cpu);
var constraints = [
{
'release': '3',
'pkgs': [
{'reference':'tetex-3.0-33.8.5.0.1.AXS3', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
{'reference':'tetex-dvips-3.0-33.8.5.0.1.AXS3', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
{'reference':'tetex-fonts-3.0-33.8.5.0.1.AXS3', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
{'reference':'tetex-latex-3.0-33.8.5.0.1.AXS3', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'}
]
}
];
var os_release = get_one_kb_item('installed_os/local/SSH/0/release');
var os_sp = get_one_kb_item('Host/*/minor_release');
var flag = 0;
var reference;
var sp;
var _cpu;
var el_string;
var rpm_spec_vers_cmp;
var epoch;
var allowmaj;
var exists_check;
var cves;
foreach var constraint ( constraints ) {
# Check that the target release is equal to the affected release
if (!empty_or_null(constraint['release'])){
if (constraint['release'] != os_release) continue;
}
if (!empty_or_null(constraint['sp'])){
if (constraint['sp'] != os_sp) continue;
}
foreach var pkg ( constraint['pkgs'] ) {
reference = NULL;
sp = NULL;
_cpu = NULL;
el_string = NULL;
rpm_spec_vers_cmp = NULL;
epoch = NULL;
allowmaj = NULL;
exists_check = NULL;
cves = NULL;
if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];
if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];
if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];
if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];
if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];
if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];
if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];
if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];
if (!empty_or_null(pkg['cves'])) cves = pkg['cves'];
if (reference &&
## (no known rpm to check OR known rpm_exists)
(!exists_check || rpm_exists(rpm:exists_check)) &&
rpm_check(sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj, cves:cves)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'tetex / tetex-dvips / tetex-fonts / tetex-latex');
}
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
14 Jan 2026 00:00Current
6.6Medium risk
Vulners AI Score6.6
CVSS 29.3
EPSS0.27841