Lucene search
K

221 matches found

OpenVAS
OpenVAS
added 2012/03/19 12:0 a.m.21 views

Fedora Update for t1lib FEDORA-2012-0289

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.8CVSS6.8AI score0.13055EPSS
Exploits0References2
Amazon
Amazon
added 2012/03/04 12:0 a.m.44 views

Medium: texlive

Issue Overview: TeX Live embeds a copy of t1lib. The t1lib library allows you to rasterize bitmaps from PostScript Type 1 fonts. The following issues affect t1lib code: Two heap-based buffer overflow flaws were found in the way t1lib processed Adobe Font Metrics AFM files. If a specially-crafted...

7.6CVSS7.8AI score0.1427EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2012/02/17 12:0 a.m.23 views

CentOS 6 : texlive (CESA-2012:0137)

Updated texlive packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

7.6CVSS6.4AI score0.1427EPSS
Exploits0References7
Cent OS
Cent OS
added 2012/02/16 1:36 p.m.86 views

kpathsea, mendexk, texlive security update

CentOS Errata and Security Advisory CESA-2012:0137 Updated texlive packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS bas...

7.6CVSS6.5AI score0.1427EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2012/02/16 12:0 a.m.30 views

RHEL 6 : texlive (RHSA-2012:0137)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:0137 advisory. TeX Live is an implementation of TeX. TeX takes a text file and a set of formatting commands as input, and creates a typesetter-independent...

7.6CVSS6.5AI score0.1427EPSS
Exploits0References15
RedHat Linux
RedHat Linux
added 2012/02/15 4:9 p.m.5 views

t1lib: invalid read crash via crafted Type 1 font

t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, reads from invalid memory locations, which allows remote attackers to cause a denial of service application crash via a crafted Type 1 font in a PDF document, a different vulnerability than CVE-2011-0764...

4.3CVSS5.9AI score0.10378EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2012/02/15 4:9 p.m.34 views

Moderate: Red Hat Security Advisory: texlive security update

Updated texlive packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

7.6CVSS6.5AI score0.1427EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2012/02/15 4:9 p.m.6 views

t1lib: Heap-based buffer overflow DVI file AFM font parser

Heap-based buffer overflow in the linetoken function in afmparse.c in t1lib, as used in teTeX 3.0.x, GNOME evince, and possibly other products, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a DVI file containing a crafted Adobe Font Metrics AFM...

6.8CVSS6.4AI score0.0421EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2012/02/15 4:9 p.m.4 views

t1lib: Invalid pointer dereference via crafted Type 1 font

t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, uses an invalid pointer in conjunction with a dereference operation, which allows remote attackers to execute arbitrary code via a crafted Type 1 font in a PDF document, as demonstrated by testz.2184122398.pdf...

6.8CVSS6AI score0.13055EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2012/02/15 4:9 p.m.6 views

t1lib: Use-after-free via crafted Type 1 font

Use-after-free vulnerability in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service application crash via a PDF document containing a crafted Type 1 font that triggers an invalid memory write, a different...

4.3CVSS5.9AI score0.05417EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2012/02/15 4:9 p.m.6 views

t1lib: Heap based buffer overflow in DVI file AFM font parser

Heap-based buffer overflow in the AFM font parser in the dvi-backend component in Evince 2.32 and earlier, teTeX 3.0, t1lib 5.1.2, and possibly other products allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted font in conjunctio...

7.6CVSS6.3AI score0.1427EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2012/02/11 12:0 a.m.34 views

Debian Security Advisory DSA 2388-1 (t1lib)

The remote host is missing an update to t1lib announced via advisory DSA 2388-1. OpenVAS Vulnerability Test $Id: deb23881.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2388-1 t1lib Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

7.6CVSS1.1AI score0.1427EPSS
Exploits0
OpenVAS
OpenVAS
added 2012/02/11 12:0 a.m.25 views

Debian: Security Advisory (DSA-2388-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.6CVSS6.8AI score0.1427EPSS
Exploits0References3
Amazon
Amazon
added 2012/02/02 12:0 a.m.34 views

Medium: t1lib

Issue Overview: Two heap-based buffer overflow flaws were found in the way t1lib processed Adobe Font Metrics AFM files. If a specially-crafted font file was opened by an application linked against t1lib, it could cause the application to crash or, potentially, execute arbitrary code with the...

7.6CVSS7.8AI score0.1427EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2012/02/01 12:0 a.m.28 views

Fedora Update for t1lib FEDORA-2012-0266

Check for the Version of t1lib OpenVAS Vulnerability Test Fedora Update for t1lib FEDORA-2012-0266 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

7.6CVSS7.9AI score0.1427EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2012/02/01 12:0 a.m.31 views

Fedora Update for t1lib FEDORA-2012-0266

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.8CVSS6.8AI score0.13055EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/01/31 12:0 a.m.27 views

CentOS 6 : t1lib (CESA-2012:0062)

Updated t1lib packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

7.6CVSS6.3AI score0.1427EPSS
Exploits0References7
Cent OS
Cent OS
added 2012/01/30 8:25 p.m.73 views

t1lib security update

CentOS Errata and Security Advisory CESA-2012:0062 Updated t1lib packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base...

7.6CVSS6.4AI score0.1427EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2012/01/30 12:0 a.m.34 views

Fedora 16 : t1lib-5.1.2-9.fc16 (2012-0289)

This update fixes several security flaws in t1lib flaws in AFM parser and when handling specially crafted Type1 fonts. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and form...

7.6CVSS5.4AI score0.1427EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2012/01/30 12:0 a.m.25 views

Fedora 15 : t1lib-5.1.2-9.fc15 (2012-0266)

This update fixes several security flaws in t1lib flaws in AFM parser and when handling specially crafted Type1 fonts. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and form...

7.6CVSS5.4AI score0.1427EPSS
Exploits0References13
Rows per page
Query Builder