Lucene search
UbuntuUSN-1316-1HistoryDec 21, 2011 - 12:00 a.m.
t1lib vulnerability
2011-12-2100:00:00
ubuntu.com
32
Releases
- Ubuntu 11.10
- Ubuntu 11.04
- Ubuntu 10.10
- Ubuntu 10.04
Packages
- t1lib - Type 1 font rasterizer library - runtime
Details
Jonathan Brossard discovered that t1lib did not correctly handle certain
malformed font files. If a user were tricked into using a specially crafted
font file, a remote attacker could cause t1lib to crash or possibly execute
arbitrary code with user privileges.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 11.10 | noarch | libt1-5 | <Â 5.1.2-3ubuntu0.11.10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | libt1-5-dbg | <Â 5.1.2-3ubuntu0.11.10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | libt1-dev | <Â 5.1.2-3ubuntu0.11.10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | t1lib-bin | <Â 5.1.2-3ubuntu0.11.10.1 | UNKNOWN |
| Ubuntu | 11.04 | noarch | libt1-5 | <Â 5.1.2-3ubuntu0.11.04.1 | UNKNOWN |
| Ubuntu | 11.04 | noarch | libt1-5-dbg | <Â 5.1.2-3ubuntu0.11.04.1 | UNKNOWN |
| Ubuntu | 11.04 | noarch | libt1-dev | <Â 5.1.2-3ubuntu0.11.04.1 | UNKNOWN |
| Ubuntu | 11.04 | noarch | t1lib-bin | <Â 5.1.2-3ubuntu0.11.04.1 | UNKNOWN |
| Ubuntu | 10.10 | noarch | libt1-5 | <Â 5.1.2-3ubuntu0.10.10.1 | UNKNOWN |
| Ubuntu | 10.10 | noarch | libt1-5-dbg | <Â 5.1.2-3ubuntu0.10.10.1 | UNKNOWN |
References
Related
openvas
openvas
Mandriva Update for t1lib MDVSA-2012:002 (t1lib)
2012-01-09 00:00:00
Ubuntu Update for t1lib USN-1316-1
2011-12-23 00:00:00
Ubuntu: Security Advisory (USN-1316-1)
2011-12-23 00:00:00
cvelist
cvelist
debiancve
debiancve
prion
prion
Design/Logic Flaw
2011-03-31 22:55:00
Code injection
2011-03-31 23:55:00
Design/Logic Flaw
2011-03-31 23:55:00
nessus
nessus
Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : t1lib vulnerability (USN-1316-1)
2011-12-22 00:00:00
Mandriva Linux Security Advisory : t1lib (MDVSA-2012:002)
2012-01-03 00:00:00
SuSE 10 Security Update : t1lib (ZYPP Patch Number 8089)
2012-06-15 00:00:00
securityvulns
securityvulns
TSSA-2011-01 xpdf : multiple vulnerabilities allow remote code execution
2011-03-29 00:00:00
t1lib / xpdf library multiple security vulnerabilities
2012-01-16 00:00:00
cve
cve
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:07:02
ubuntucve
ubuntucve
cert
cert
Foolabs Xpdf contains a denial of service vulnerability
2011-03-21 00:00:00
slackware
slackware
[slackware-security] t1lib
2012-08-16 06:32:38
oraclelinux
oraclelinux
texlive security update
2012-02-15 00:00:00
t1lib security update
2012-01-24 00:00:00
tetex security update
2012-08-23 00:00:00
amazon
amazon
Medium: texlive
2012-03-04 16:08:00
Medium: t1lib
2012-02-02 14:26:00
redhat
redhat
(RHSA-2012:0137) Moderate: texlive security update
2012-02-15 00:00:00
(RHSA-2012:0062) Moderate: t1lib security update
2012-01-24 00:00:00
(RHSA-2012:1201) Moderate: tetex security update
2012-08-23 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: t1lib-5.1.2-9.fc15
2012-01-28 03:28:44
[SECURITY] Fedora 16 Update: t1lib-5.1.2-9.fc16
2012-01-28 03:23:39
osv
osv
t1lib - several
2012-01-14 00:00:00
centos
centos
t1lib security update
2012-01-30 20:25:25
kpathsea, mendexk, texlive security update
2012-02-16 13:36:55
tetex security update
2012-08-23 23:12:26
debian
debian
[SECURITY] [DSA 2388-1] t1lib security update
2012-01-15 10:26:10
gentoo
gentoo
T1Lib: : Multiple vulnerabilities
2017-01-23 00:00:00