CentOS 5 : tetex (CESA-2012:1201)

Updated tetex packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

Moderate: Red Hat Security Advisory: tetex security update

Updated tetex packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

[SECURITY] Fedora 16 Update: xfig-3.2.5-32.b.fc16

Xfig is an X Window System tool for creating basic vector graphics, including bezier curves, lines, rulers and more. The resulting graphics can be saved, printed on PostScript printers or converted to a variety of other formats e.g., X11 bitmaps, Encapsulated PostScript, LaTeX. You should install...

Scientific Linux Security Update : tetex on SL3.x i386/x86_64

A buffer overflow flaw was found in the way teTeX processed virtual font files when converting DVI files into PostScript. An attacker could create a malicious DVI file that would cause the dvips executable to crash or, potentially, execute arbitrary code. CVE-2010-0827 Multiple integer overflow...

Scientific Linux Security Update : poppler on SL5.x i386/x86_64

An uninitialized pointer use flaw was discovered in poppler. An attacker could create a malicious PDF file that, when opened, would cause applications that use poppler such as Evince to crash or, potentially, execute arbitrary code. CVE-2010-3702 An array index error was found in the way poppler...

Scientific Linux Security Update : poppler on SL6.x i386/x86_64

Two uninitialized pointer use flaws were discovered in poppler. An attacker could create a malicious PDF file that, when opened, would cause applications that use poppler such as Evince to crash or, potentially, execute arbitrary code. CVE-2010-3702, CVE-2010-3703 An array index error was found i...

Scientific Linux Security Update : cups on SL3.x, SL4.x, SL5.x i386/x86_64

A buffer overflow flaw was discovered in the SGI image format decoding routines used by the CUPS image converting filter 'imagetops'. An attacker could create a malicious SGI image file that could, possibly, execute arbitrary code as the 'lp' user if the file was printed. CVE-2008-3639 An integer...

Scientific Linux Security Update : ghostscript on SL5.x, SL6.x i386/x86_64 (20120202)

Ghostscript is a set of software that provides a PostScript interpreter, a set of C procedures the Ghostscript library, which implements the graphics capabilities in the PostScript language and an interpreter for Portable Document Format PDF files. An integer overflow flaw was found in...

Scientific Linux Security Update : tetex on SL5.x i386/x86_64

Multiple integer overflow flaws were found in the way teTeX processed special commands when converting DVI files into PostScript. An attacker could create a malicious DVI file that would cause the dvips executable to crash or, potentially, execute arbitrary code. CVE-2010-0739, CVE-2010-1440...

Scientific Linux Security Update : freetype on SL6.x i386/x86_64

It was found that the FreeType font rendering engine improperly validated certain position values when processing input streams. If a user loaded a specially crafted font file with an application linked against FreeType, it could cause the application to crash or, possibly, execute arbitrary code...

Scientific Linux Security Update : tetex on SL4.x i386/x86_64

A buffer overflow flaw was found in the way teTeX processed virtual font files when converting DVI files into PostScript. An attacker could create a malicious DVI file that would cause the dvips executable to crash or, potentially, execute arbitrary code. CVE-2010-0827 Multiple integer overflow...

Scientific Linux Security Update : ghostscript on SL4.x i386/x86_64 (20120202)

Ghostscript is a set of software that provides a PostScript interpreter, a set of C procedures the Ghostscript library, which implements the graphics capabilities in the PostScript language and an interpreter for Portable Document Format PDF files. Ghostscript included the current working directo...

CentOS Update for ghostscript CESA-2012:0095 centos6

Check for the Version of ghostscript OpenVAS Vulnerability Test CentOS Update for ghostscript CESA-2012:0095 centos6 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...

CentOS Update for ghostscript CESA-2012:0096 centos4

Check for the Version of ghostscript OpenVAS Vulnerability Test CentOS Update for ghostscript CESA-2012:0096 centos4 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...

CentOS Update for ghostscript CESA-2012:0096 centos4

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for ghostscript CESA-2012:0095 centos5

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for freetype CESA-2012:0467 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Microsoft Windows OpenType Font - File Format Denial of Service

Microsoft Windows OpenType Font - File Format Denial of Service OpenType font file format remote client-side DoS exploit for Windows By Oleksiuk Dmytro aka Cr4sh http://twitter.com/dolex http://blog.cr4.sh mailto:[email protected] INFO: Zero day vulnerability exists in kernel-mode library ATMFD.DL...

RedHat Update for freetype RHSA-2011:1085-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

ImageMagick security and bug fix update

6.2.8.0-15.el5 - Fix for PostScript conversion was incomplete, as larger documents would end up being cropped without the -g option 797364 6.2.8.0-14.el5 - Add fix for CVE-2012-0247 CVE-2012-0248 CVE-2012-1185 CVE-2012-1186 - Add fix for CVE-2012-0259 CVE-2012-0260 CVE-2012-1798 6.2.8.0-13.el5 -...