Lucene search

Veracode Vulnerability DatabaseVERACODE:24844

HistoryApr 10, 2020 - 1:07 a.m.

Denial Of Service (DoS)

2020-04-1001:07:02

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.026 Low

EPSS

Percentile

90.3%

JSON

TeX Live is vulnerable to denial of service (DoS). An out-of-bounds memory read flaw was found in t1lib. A specially-crafted font file could, when opened, cause a TeX Live utility to crash.

CPENameOperatorVersion
texliveeq2007__56.el6
texliveeq2007__56.el6

CPE	Name	Operator	Version
	texlive	eq	2007__56.el6
	texlive	eq	2007__56.el6

References

rhn.redhat.com/errata/RHSA-2012-1201.html

secunia.com/advisories/43823

secunia.com/advisories/48985

securityreason.com/securityalert/8171

securitytracker.com/id?1025266

www.foolabs.com/xpdf/download.html

www.kb.cert.org/vuls/id/376500

www.kb.cert.org/vuls/id/MAPG-8ECL8X

www.mandriva.com/security/advisories?name=MDVSA-2012:144

www.securityfocus.com/archive/1/517205/100/0/threaded

www.toucan-system.com/advisories/tssa-2011-01.txt

www.vupen.com/english/advisories/2011/0728

access.redhat.com/errata/RHSA-2012:0137

access.redhat.com/security/updates/classification/#moderate

security.gentoo.org/glsa/201701-57

0.026 Low

EPSS

Percentile

90.3%

JSON

Related for VERACODE:24844