EUVD-2007-5907

Malware in sbrugna...

SUSE CVE-2007-5936

dvips in teTeX and TeXlive 2007 and earlier allows local users to obtain sensitive information and modify certain data by creating certain temporary files before they are processed by dviljk, which can then be read or modified in place...

SUSE CVE-2007-5937

Multiple buffer overflows in dvi2xx.c in dviljk in teTeX and TeXlive 2007 and earlier might allow user-assisted attackers to execute arbitrary code via a crafted DVI input file...

Mandriva Update for tetex MDKSA-2007:230 (tetex)

Check for the Version of tetex OpenVAS Vulnerability Test Mandriva Update for tetex MDKSA-2007:230 tetex Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

openSUSE 10 Security Update : texlive-bin (texlive-bin-5221)

Buffer overflows in dvips and dviljk could be triggered by specially crafted dvi files CVE-2007-5935, CVE-2007-5937. dvips additionally created temporary files in an insecure manner CVE-2007-5936. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

SuSE 10 Security Update : TeX (ZYPP Patch Number 4818)

Buffer overflows in dvips and dviljk could be triggered by specially crafted dvi files CVE-2007-5935 / CVE-2007-5937. dvips additionally created temporary files in an insecure manner. CVE-2007-5936 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novel...

Ubuntu 6.06 LTS / 6.10 / 7.04 / 7.10 : tetex-bin, texlive-bin vulnerabilities (USN-554-1)

Bastien Roucaries discovered that dvips as included in tetex-bin and texlive-bin did not properly perform bounds checking. If a user or automated system were tricked into processing a specially crafted dvi file, dvips could be made to crash and execute code as the user invoking the program...

USN-554-1: teTeX and TeX Live vulnerabilities

Bastien Roucaries discovered that dvips as included in tetex-bin and texlive-bin did not properly perform bounds checking. If a user or automated system were tricked into processing a specially crafted dvi file, dvips could be made to crash and execute code as the user invoking the program...

Fedora 8 : tetex-3.0-44.3.fc8 (2007-3308)

fix t1lib flaw CVE-2007-4033 352271 - fix CVE-2007-4352 CVE-2007-5392 CVE-2007-5393, various xpdf flaws 345121 - fix dvips -z buffer overflow with long href CVE-2007-5935 368591 - fix insecure usage of temporary file in dviljk CVE-2007-5936 CVE-2007-5937 368611, 368641 Note that Tenable Network...

Fedora 7 : tetex-3.0-40.3.fc7 (2007-3390)

fix t1lib flaw CVE-2007-4033 352271 - fix CVE-2007-4352 CVE-2007-5392 CVE-2007-5393, various xpdf flaws 345121 - xdvi won't segfault if DVI file contains character which is not present in font 243630 - fix dvips -z buffer overflow with long href CVE-2007-5935 368591 - fix insecure usage of...

CVE-2007-5936

dvips in teTeX and TeXlive 2007 and earlier allows local users to obtain sensitive information and modify certain data by creating certain temporary files before they are processed by dviljk, which can then be read or modified in place...

CVE-2007-5937

Multiple buffer overflows in dvi2xx.c in dviljk in teTeX and TeXlive 2007 and earlier might allow user-assisted attackers to execute arbitrary code via a crafted DVI input file...

CVE-2007-5937

Multiple buffer overflows in dvi2xx.c in dviljk in teTeX and TeXlive 2007 and earlier might allow user-assisted attackers to execute arbitrary code via a crafted DVI input file...

CVE-2007-5937

Multiple buffer overflows in dvi2xx.c in dviljk in teTeX and TeXlive 2007 and earlier might allow user-assisted attackers to execute arbitrary code via a crafted DVI input file...

DEBIAN-CVE-2007-5937

Multiple buffer overflows in dvi2xx.c in dviljk in teTeX and TeXlive 2007 and earlier might allow user-assisted attackers to execute arbitrary code via a crafted DVI input file...

CVE-2007-5936

dvips in teTeX and TeXlive 2007 and earlier allows local users to obtain sensitive information and modify certain data by creating certain temporary files before they are processed by dviljk, which can then be read or modified in place...

CVE-2007-5936

dvips in teTeX and TeXlive 2007 and earlier allows local users to obtain sensitive information and modify certain data by creating certain temporary files before they are processed by dviljk, which can then be read or modified in place...

CVE-2007-5937

CVE-2007-5937 affects the teTeX/TeX Live family (2007 and earlier) via multiple buffer overflows in dvi2xx.c of dviljk. The flaw allows a user‑assisted attacker to achieve arbitrary code execution by supplying a crafted DVI file. References in OpenVAS and Linux advisories corroborate involvement ...

CVE-2007-5937

Multiple buffer overflows in dvi2xx.c in dviljk in teTeX and TeXlive 2007 and earlier might allow user-assisted attackers to execute arbitrary code via a crafted DVI input file...