7 matches found
SUSE CVE-2010-1440
Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a special command in a DVI file, related to the 1 predospecial and 2 bbdospecial function...
Tex Live bbdospecial()函数整数溢出漏洞
BUGTRAQ ID: 39966 CVECAN ID: CVE-2010-1440 TeX Live是用于创建TeX排版系统的工具。 TeX Live的dospecial.c文件中的bbdospecial函数中存在最终可导致堆溢出的整数溢出漏洞。用户受骗打开了畸形的.dvi文件就可以触发这个溢出,导致执行任意代码。 TeX Live 2009 TeX Live 2008 TeX Live 2007 厂商补丁: RedHat ------ RedHat已经为此发布了一个安全公告(RHSA-2010:0401-01)以及相应补丁: RHSA-2010:0401-01:Moderate:...
DEBIAN-CVE-2010-1440
Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a special command in a DVI file, related to the 1 predospecial and 2 bbdospecial function...
texlive: Integer overflow by processing special commands
Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a special command in a DVI file, related to the 1 predospecial and 2 bbdospecial function...
texlive: Integer overflow by processing special commands
Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a special command in a DVI file, related to the 1 predospecial and 2 bbdospecial function...
texlive: Integer overflow by processing special commands
Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a special command in a DVI file, related to the 1 predospecial and 2 bbdospecial function...
PT-2010-3127 · Thomas Esser +2 · Tetex +2
Name of the Vulnerable Software and Affected Versions: TeX Live versions prior to 2010 teTeX affected versions not specified Description: The issue is related to multiple integer overflows in the dospecial.c file of the dvips component, specifically in the predospecial and bbdospecial functions...