Mandrake Linux Security Advisory : tetex (MDKSA-2006:011)

Multiple heap-based buffer overflows in the DCTStream::readProgressiveSOF and DCTStream::readBaselineSOF functions in the DCT stream parsing code Stream.cc in xpdf 3.01 and earlier, allow user-complicit attackers to cause a denial of service heap corruption and possibly execute arbitrary code via...

USN-51-1: teTeX auxiliary script vulnerability

Javier Fernández-Sanguino Peña noticed that "xdvizilla", an auxiliary script to integrate DVI file viewing in Mozilla-based browsers, created temporary files and directories in an insecure manner. This could allow a symbolic link attack to create or overwrite arbitrary files with the privileges o...

teTeX 1.0.7 - Filters Temporary File Race Condition

teTeX 1.0.7 - Filters Temporary File Race Condition / source: https://www.securityfocus.com/bid/2974/info teTeX is a TeX distribution for UNIX compatible systems. A race condition vulnerability exists in the temporary file handling method used by some teTeX filters. The problem exists because in...

teTeX 1.0.7 - Filters Temporary File Race Condition

/ source: https://www.securityfocus.com/bid/2974/info teTeX is a TeX distribution for UNIX compatible systems. A race condition vulnerability exists in the temporary file handling method used by some teTeX filters. The problem exists because in some cases temporary files are created world-writeab...