107 matches found
CVE-2010-0827
Integer overflow in dvips in TeX Live 2009 and earlier, and teTeX, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted virtual font VF file associated with a DVI file...
Integer overflow
Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...
CVE-2010-0739
Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...
DEBIAN-CVE-2010-0739
Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...
CVE-2010-0739
Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...
CVE-2010-0739
Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...
CVE-2010-0739
CVE-2010-0739 affects TeX Live and teTeX dvips parsing of DVI files. Root cause: integer/heap-based overflow in predospecial() of dospecial.c, triggered by a crafted DVI file, enabling user-assisted remote code execution. Connected advisories indicate TeX Live/teTeX components are vulnerable; pat...
CVE-2010-0739
Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...
Fedora 10 : texlive-2007-46.fc10 (2009-10730)
Fri Oct 23 2009 Jindrich Novy 2007-46 - add missing dependency on kpathsea - Thu Oct 15 2009 Jindrich Novy 2007-45 - make kpathsea not dependent on texlive - fix lacheck again 451513 - fix dvips configuration 467542 - update kpathsea description and summary 519257 - use upstream patch to fix pool...
Fedora 11 : texlive-2007-46.fc11 (2009-10857)
Fri Oct 23 2009 Jindrich Novy 2007-46 - add missing dependency on kpathsea - Thu Oct 15 2009 Jindrich Novy 2007-45 - make kpathsea not dependent on texlive - fix lacheck again 451513 - fix dvips configuration 467542 - update kpathsea description and summary 519257 - use upstream patch to fix pool...
Mandriva Update for tetex MDKSA-2007:230 (tetex)
Check for the Version of tetex OpenVAS Vulnerability Test Mandriva Update for tetex MDKSA-2007:230 tetex Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Mandriva Update for tetex MDKSA-2007:230 (tetex)
Check for the Version of tetex OpenVAS Vulnerability Test Mandriva Update for tetex MDKSA-2007:230 tetex Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Ubuntu Update for tetex-bin, texlive-bin vulnerabilities USN-554-1
Ubuntu Update for Linux kernel vulnerabilities USN-554-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN5541.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for tetex-bin, texlive-bin vulnerabilities USN-554-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
openSUSE 10 Security Update : texlive-bin (texlive-bin-5221)
Buffer overflows in dvips and dviljk could be triggered by specially crafted dvi files CVE-2007-5935, CVE-2007-5937. dvips additionally created temporary files in an insecure manner CVE-2007-5936. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...
Debian Security Advisory DSA 207-1 (tetex-bin)
The remote host is missing an update to tetex-bin announced via advisory DSA 207-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
SuSE 10 Security Update : TeX (ZYPP Patch Number 4818)
Buffer overflows in dvips and dviljk could be triggered by specially crafted dvi files CVE-2007-5935 / CVE-2007-5937. dvips additionally created temporary files in an insecure manner. CVE-2007-5936 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novel...
Ubuntu 6.06 LTS / 6.10 / 7.04 / 7.10 : tetex-bin, texlive-bin vulnerabilities (USN-554-1)
Bastien Roucaries discovered that dvips as included in tetex-bin and texlive-bin did not properly perform bounds checking. If a user or automated system were tricked into processing a specially crafted dvi file, dvips could be made to crash and execute code as the user invoking the program...
USN-554-1: teTeX and TeX Live vulnerabilities
Bastien Roucaries discovered that dvips as included in tetex-bin and texlive-bin did not properly perform bounds checking. If a user or automated system were tricked into processing a specially crafted dvi file, dvips could be made to crash and execute code as the user invoking the program...
Fedora 7 : tetex-3.0-40.3.fc7 (2007-3390)
fix t1lib flaw CVE-2007-4033 352271 - fix CVE-2007-4352 CVE-2007-5392 CVE-2007-5393, various xpdf flaws 345121 - xdvi won't segfault if DVI file contains character which is not present in font 243630 - fix dvips -z buffer overflow with long href CVE-2007-5935 368591 - fix insecure usage of...
Fedora Core 6 : tetex-3.0-36.fc6 (2007-750)
fix dvips -z buffer overflow with long href 368591 - fix insecure usage of temporary file in dviljk 368611, 368641 - update License and BuildRoot tags - fix t1lib flaw CVE-2007-4033 352271 - fix CVE-2007-4352 CVE-2007-5392 CVE-2007-5393, various xpdf flaws 345121 - xdvi won't segfault if DVI file...