DOCUMENTATION

Views

Search

Toolbox

Advisories:rPSA-2008-0007

From rPath Wiki

Jump to: navigation, search

rPath Security Advisory 2008-0007-1

Published: 2008-01-04

Products

rPath Linux 1

Rating

Minor

Exposure Level Classification

Indirect User Deterministic Unauthorized Access

Updated Versions

tetex=conary.rpath.com@rpl:1/2.0.2-28.10-1
tetex-afm=conary.rpath.com@rpl:1/2.0.2-28.10-1
tetex-dvips=conary.rpath.com@rpl:1/2.0.2-28.10-1
tetex-fonts=conary.rpath.com@rpl:1/2.0.2-28.10-1
tetex-latex=conary.rpath.com@rpl:1/2.0.2-28.10-1
tetex-xdvi=conary.rpath.com@rpl:1/2.0.2-28.10-1

rPath Issue Tracking System

RPL-1972

References

CVE-2007-4033

Description

Previous versions of the tetex package are vulnerable to an Arbitrary

Code Execution attack in which user-assisted attackers can use malformed

font data to cause a buffer overflow in applications that use t1lib.

Copyright 2008 rPath, Inc. This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html

Retrieved from "http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0007"

Categories: Support Issue | Advisories