6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.145 Low
EPSS
Percentile
95.8%
CentOS Errata and Security Advisory CESA-2010:0401
teTeX is an implementation of TeX. TeX takes a text file and a set of
formatting commands as input, and creates a typesetter-independent DeVice
Independent (DVI) file as output.
A buffer overflow flaw was found in the way teTeX processed virtual font
files when converting DVI files into PostScript. An attacker could create a
malicious DVI file that would cause the dvips executable to crash or,
potentially, execute arbitrary code. (CVE-2010-0827)
Multiple integer overflow flaws were found in the way teTeX processed
special commands when converting DVI files into PostScript. An attacker
could create a malicious DVI file that would cause the dvips executable to
crash or, potentially, execute arbitrary code. (CVE-2010-0739,
CVE-2010-1440)
A stack-based buffer overflow flaw was found in the way teTeX processed DVI
files containing HyperTeX references with long titles, when converting them
into PostScript. An attacker could create a malicious DVI file that would
cause the dvips executable to crash. (CVE-2007-5935)
teTeX embeds a copy of Xpdf, an open source Portable Document Format (PDF)
file viewer, to allow adding images in PDF format to the generated PDF
documents. The following issues affect Xpdf code:
Multiple integer overflow flaws were found in Xpdf. If a local user
generated a PDF file from a TeX document, referencing a specially-crafted
PDF file, it would cause Xpdf to crash or, potentially, execute arbitrary
code with the privileges of the user running pdflatex. (CVE-2009-0791,
CVE-2009-3609)
All users of tetex are advised to upgrade to these updated packages, which
contain backported patches to correct these issues.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2010-May/078795.html
https://lists.centos.org/pipermail/centos-announce/2010-May/078796.html
Affected packages:
tetex
tetex-afm
tetex-doc
tetex-dvips
tetex-fonts
tetex-latex
tetex-xdvi
Upstream details at:
https://access.redhat.com/errata/RHSA-2010:0401
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 3 | i386 | tetex | < 1.0.7-67.19 | tetex-1.0.7-67.19.i386.rpm |
CentOS | 3 | i386 | tetex-afm | < 1.0.7-67.19 | tetex-afm-1.0.7-67.19.i386.rpm |
CentOS | 3 | i386 | tetex-doc | < 1.0.7-67.19 | tetex-doc-1.0.7-67.19.i386.rpm |
CentOS | 3 | i386 | tetex-dvips | < 1.0.7-67.19 | tetex-dvips-1.0.7-67.19.i386.rpm |
CentOS | 3 | i386 | tetex-fonts | < 1.0.7-67.19 | tetex-fonts-1.0.7-67.19.i386.rpm |
CentOS | 3 | i386 | tetex-latex | < 1.0.7-67.19 | tetex-latex-1.0.7-67.19.i386.rpm |
CentOS | 3 | i386 | tetex-xdvi | < 1.0.7-67.19 | tetex-xdvi-1.0.7-67.19.i386.rpm |
CentOS | 3 | i386 | tetex | < 1.0.7-67.19 | tetex-1.0.7-67.19.i386.rpm |
CentOS | 3 | i386 | tetex-afm | < 1.0.7-67.19 | tetex-afm-1.0.7-67.19.i386.rpm |
CentOS | 3 | i386 | tetex-doc | < 1.0.7-67.19 | tetex-doc-1.0.7-67.19.i386.rpm |