Security update for texlive (important)

2018-10-04T15:11:03
ID OPENSUSE-SU-2018:2998-1
Type suse
Reporter Suse
Modified 2018-10-04T15:11:03

Description

This update for texlive fixes the following issue:

  • CVE-2018-17407: Prevent buffer overflow when handling of Type 1 fonts allowed arbitrary code execution when a malicious font was loaded by one of the vulnerable tools: pdflatex, pdftex, dvips, or luatex (bsc#1109673)