It was discovered that TeX Live incorrectly handled certain long .bib
bibliography files. If a user or automated system were tricked into
processing a specially crafted bib file, an attacker could cause a denial
of service via application crash. This issue only affected Ubuntu 8.04 LTS,
9.04 and 9.10. (CVE-2009-1284)
Marc Schoenefeld, Karel Ε rot and Ludwig Nussel discovered that TeX Live
incorrectly handled certain malformed dvi files. If a user or automated
system were tricked into processing a specially crafted dvi file, an
attacker could cause a denial of service via application crash, or possibly
execute arbitrary code with the privileges of the user invoking the
program. (CVE-2010-0739, CVE-2010-1440)
Dan Rosenberg discovered that TeX Live incorrectly handled certain
malformed dvi files. If a user or automated system were tricked into
processing a specially crafted dvi file, an attacker could cause a denial
of service via application crash, or possibly execute arbitrary code with
the privileges of the user invoking the program. (CVE-2010-0827)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 9.10 | noarch | texlive-base-bin | <Β 2007.dfsg.2-7ubuntu1.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | libkpathsea-dev | <Β 2007.dfsg.2-7ubuntu1.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | libkpathsea4 | <Β 2007.dfsg.2-7ubuntu1.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | texlive-base-bin-doc | <Β 2007.dfsg.2-7ubuntu1.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | texlive-extra-utils | <Β 2007.dfsg.2-7ubuntu1.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | texlive-font-utils | <Β 2007.dfsg.2-7ubuntu1.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | texlive-lang-indic | <Β 2007.dfsg.2-7ubuntu1.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | texlive-metapost | <Β 2007.dfsg.2-7ubuntu1.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | texlive-metapost-doc | <Β 2007.dfsg.2-7ubuntu1.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | texlive-music | <Β 2007.dfsg.2-7ubuntu1.1 | UNKNOWN |