7 matches found
Debian Security Advisory DSA 2198-1 (tex-common)
The remote host is missing an update to tex-common announced via advisory DSA 2198-1. OpenVAS Vulnerability Test $Id: deb21981.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2198-1 tex-common Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...
CVE-2011-1400
The default configuration of the shellescapecommands directive in conf/texmf.d/95NonPath.cnf in the tex-common package before 2.08.1 in Debian GNU/Linux squeeze, Ubuntu 10.10 and 10.04 LTS, and possibly other operating systems lists certain programs, which might allow remote attackers to execute...
CVE-2011-1400
The default configuration of the shellescapecommands directive in conf/texmf.d/95NonPath.cnf in the tex-common package before 2.08.1 in Debian GNU/Linux squeeze, Ubuntu 10.10 and 10.04 LTS, and possibly other operating systems lists certain programs, which might allow remote attackers to execute...
CVE-2011-1400
The CVE-2011-1400 issue affects the tex-common package, where the default shell_escape_commands setting in conf/texmf.d/95NonPath.cnf could allow remote code execution via a crafted TeX document. Affected distributions include Debian GNU/Linux squeeze and Ubuntu 10.04/10.10, with tex-common befor...
[SECURITY] [DSA 2198-1] tex-common security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2198-1 [email protected] http://www.debian.org/security/ Nico Golde March 22, 2011 http://www.debian.org/security/faq -...
Debian DSA-2198-1 : tex-common - insufficient input sanitization
Mathias Svensson discovered that tex-common, a package shipping a number of scripts and configuration files necessary for TeX, contains insecure settings for the 'shellescapecommands' directive. Depending on the scenario, this may result in arbitrary code execution when a victim is tricked into...
[SECURITY] [DSA 2198-1] tex-common security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2198-1 [email protected] http://www.debian.org/security/ Nico Golde March 22, 2011 http://www.debian.org/security/faq -...