TeTeX is an implementation of TeX. TeX takes a text file and a set of
formatting commands as input and creates a typesetter-independent .dvi
(DeVice Independent) file as output.
Maurycy Prodeus discovered an integer overflow flaw in the processing
of PDF files. An attacker could create a malicious PDF file that would
cause TeTeX to crash or potentially execute arbitrary code when opened.
(CVE-2007-3387)
All users of TeTeX should upgrade to these updated packages, which
contain a backported patch to resolve this issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | ppc | tetex-afm | < 2.0.2-22.0.1.EL4.8 | tetex-afm-2.0.2-22.0.1.EL4.8.ppc.rpm |
RedHat | any | i386 | tetex-dvilj | < 1.0.7-38.5E.11 | tetex-dvilj-1.0.7-38.5E.11.i386.rpm |
RedHat | any | s390x | tetex-dvips | < 1.0.7-67.10 | tetex-dvips-1.0.7-67.10.s390x.rpm |
RedHat | any | s390 | tetex-dvips | < 2.0.2-22.0.1.EL4.8 | tetex-dvips-2.0.2-22.0.1.EL4.8.s390.rpm |
RedHat | any | ia64 | tetex-afm | < 2.0.2-22.0.1.EL4.8 | tetex-afm-2.0.2-22.0.1.EL4.8.ia64.rpm |
RedHat | any | ia64 | tetex-afm | < 1.0.7-67.10 | tetex-afm-1.0.7-67.10.ia64.rpm |
RedHat | any | s390x | tetex-fonts | < 2.0.2-22.0.1.EL4.8 | tetex-fonts-2.0.2-22.0.1.EL4.8.s390x.rpm |
RedHat | any | s390 | tetex-dvips | < 1.0.7-67.10 | tetex-dvips-1.0.7-67.10.s390.rpm |
RedHat | any | i386 | tetex-fonts | < 1.0.7-67.10 | tetex-fonts-1.0.7-67.10.i386.rpm |
RedHat | any | x86_64 | tetex-doc | < 2.0.2-22.0.1.EL4.8 | tetex-doc-2.0.2-22.0.1.EL4.8.x86_64.rpm |