Lucene search
K

221 matches found

Veracode
Veracode
added 2020/04/10 1:7 a.m.29 views

Denial Of Service (DoS)

TeX Live is vulnerable to denial of service DoS. An invalid pointer dereference flaw was found in t1lib. A specially-crafted font file could, when opened, cause a TeX Live utility to crash or, potentially, execute arbitrary code with the privileges of the user running the utility...

6.8CVSS4.5AI score0.13055EPSS
Exploits0References20Affected Software1
Veracode
Veracode
added 2020/04/10 1:7 a.m.22 views

Denial Of Service (DoS)

TeX Live is vulnerable to denial of service DoS. An out-of-bounds memory read flaw was found in t1lib. A specially-crafted font file could, when opened, cause a TeX Live utility to crash...

4.3CVSS2.3AI score0.10378EPSS
Exploits0References15Affected Software1
Veracode
Veracode
added 2020/04/10 1:7 a.m.24 views

Denial Of Service (DoS)

TeX Live is vulnerable to denial of service DoS. An off-by-one flaw was found in t1lib. A specially-crafted font file could, when opened, cause a TeX Live utility to crash or, potentially, execute arbitrary code with the privileges of the user running the utility...

4.3CVSS4.1AI score0.05417EPSS
Exploits0References15Affected Software1
Veracode
Veracode
added 2020/04/10 1:7 a.m.26 views

Denial Of Service (DoS)

TeX Live is vulnerable to Denial of Service DoS. Two heap-based buffer overflow flaws were found in the way t1lib processed Adobe Font Metrics AFM files. If a specially-crafted font file was opened by a TeX Live utility, it could cause the utility to crash or, potentially, execute arbitrary code...

7.6CVSS4.4AI score0.1427EPSS
Exploits0References29Affected Software1
Veracode
Veracode
added 2020/04/10 12:21 a.m.17 views

Arbitrary Code Execution

tetex is vulnerable to arbitrary code execution. The vulnerability exists as a flaw was found in the t1lib library, used in the handling of Type 1 fonts. An attacker could create a malicious file that would cause TeTeX to crash, or potentially execute arbitrary code when opened...

7.5CVSS3.5AI score0.18661EPSS
Exploits1References42Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/01/24 12:0 a.m.46 views

GLSA-201701-57 : T1Lib: : Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201701-57 T1Lib: : Multiple vulnerabilities Multiple vulnerabilities have been discovered in T1Lib. Please review the CVE identifiers referenced below for details. Impact : Remote attackers, by coercing users to process specially...

7.6CVSS5.8AI score0.1427EPSS
Exploits0References8
Gentoo Linux
Gentoo Linux
added 2017/01/23 12:0 a.m.38 views

T1Lib: : Multiple vulnerabilities

Background T1Lib is a library for rasterizing bitmaps from Adobe Type 1 fonts. Description Multiple vulnerabilities have been discovered in T1Lib. Please review the CVE identifiers referenced below for details. Impact Remote attackers, by coercing users to process specially crafted AFM font or PD...

7.6CVSS8.5AI score0.1427EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.6 views

Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the t1lib package of the Debian GNU/Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

7.6CVSS5.4AI score0.1427EPSS
Exploits0References13Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.7 views

Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The t1lib-bin package of the Debian GNU/Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

7.5CVSS5.5AI score0.18661EPSS
Exploits1References3Affected Software1
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.41 views

Oracle: Security Advisory (ELSA-2012-0062)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.6CVSS7.9AI score0.1427EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.22 views

Amazon Linux: Security Advisory (ALAS-2012-48)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.6CVSS7.9AI score0.1427EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.29 views

Amazon Linux: Security Advisory (ALAS-2012-40)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.6CVSS7.9AI score0.1427EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.7 views

The vulnerability of the Gentoo Linux operating system allows a malicious intruder to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the t1lib package up to version 5.0.2-r1 of the Gentoo Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...

7.5CVSS5.4AI score0.18661EPSS
Exploits1References3Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

T1lib intT1_Env_GetCompletePath Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25079/info T1lib is prone to a buffer-overflow vulnerability because the library fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffers. An attacker can exploit this issu...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.28 views

openSUSE Security Update : t1lib (openSUSE-SU-2012:0559-1)

Specially crafted type1 fonts could cause memory corruptions in t1lib %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-249. The text description of this plugin is C SUSE LLC...

6.8CVSS6.6AI score0.13055EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.30 views

openSUSE Security Update : t1lib (openSUSE-SU-2011:0140-1)

A heap overflow in the AFM font parser of DVI files has been fixed in t1lib. CVE-2010-2642 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update t1lib-3788. The text...

7.6CVSS5.3AI score0.1427EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/09/04 12:0 a.m.33 views

Amazon Linux AMI : texlive (ALAS-2012-48)

TeX Live embeds a copy of t1lib. The t1lib library allows you to rasterize bitmaps from PostScript Type 1 fonts. The following issues affect t1lib code : Two heap-based buffer overflow flaws were found in the way t1lib processed Adobe Font Metrics AFM files. If a specially crafted font file was...

7.6CVSS6.2AI score0.1427EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2013/09/04 12:0 a.m.30 views

Amazon Linux AMI : t1lib (ALAS-2012-40)

Two heap-based buffer overflow flaws were found in the way t1lib processed Adobe Font Metrics AFM files. If a specially crafted font file was opened by an application linked against t1lib, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the...

7.6CVSS6.2AI score0.1427EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.50 views

Oracle Linux 6 : t1lib (ELSA-2012-0062)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-0062 advisory. 5.1.2-6.1 - Fixed CVE-2010-2642, CVE-2011-0433, CVE-2011-0764, CVE-2011-1552, CVE-2011-1553, CVE-2011-1554 Resolves: rhbz772900 Tenable has extracted t...

7.6CVSS5.6AI score0.1427EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.25 views

Oracle Linux 6 : texlive (ELSA-2012-0137)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-0137 advisory. 2007-57 - fix CVE-2010-2642 CVE-2011-0433 CVE-2011-0764 CVE-2011-1552 CVE-2011-1553 CVE-2011-1554, texlive various flaws 773183 Tenable has extracted t...

7.6CVSS5.6AI score0.1427EPSS
Exploits0References7
Rows per page
Query Builder