Oval Definition:oval:com.redhat.rhsa:def:20060160
Revision Date:2008-03-20Version:647
Title:RHSA-2006:0160: tetex security update (Moderate)
Description:TeTeX is an implementation of TeX. TeX takes a text file and a set of formatting commands as input and creates a typesetter-independent .dvi (DeVice Independent) file as output.

Several flaws were discovered in the teTeX PDF parsing library. An attacker could construct a carefully crafted PDF file that could cause teTeX to crash or possibly execute arbitrary code when opened. The Common Vulnerabilities and Exposures project assigned the names CVE-2005-3191, CVE-2005-3192, CVE-2005-3193, CVE-2005-3624, CVE-2005-3625, CVE-2005-3626, CVE-2005-3627 and CVE-2005-3628 to these issues.

Users of teTeX should upgrade to these updated packages, which contain backported patches and are not vulnerable to these issues.
Family:unixClass:patch
Status:Reference(s):CVE-2005-3191
CVE-2005-3192
CVE-2005-3193
CVE-2005-3624
CVE-2005-3625
CVE-2005-3626
CVE-2005-3627
CVE-2005-3628
RHSA-2006:0160
RHSA-2006:0160-01
RHSA-2006:0160-01
Platform(s):Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
Product(s):
Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • tetex is earlier than 0:1.0.7-67.9
  • AND tetex is signed with Red Hat master key
  • tetex-xdvi is earlier than 0:1.0.7-67.9
  • AND tetex-xdvi is signed with Red Hat master key
  • tetex-latex is earlier than 0:1.0.7-67.9
  • AND tetex-latex is signed with Red Hat master key
  • tetex-dvips is earlier than 0:1.0.7-67.9
  • AND tetex-dvips is signed with Red Hat master key
  • tetex-afm is earlier than 0:1.0.7-67.9
  • AND tetex-afm is signed with Red Hat master key
  • tetex-fonts is earlier than 0:1.0.7-67.9
  • AND tetex-fonts is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • tetex is earlier than 0:2.0.2-22.EL4.7
  • AND tetex is signed with Red Hat master key
  • tetex-doc is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-doc is signed with Red Hat master key
  • tetex-latex is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-latex is signed with Red Hat master key
  • tetex-dvips is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-dvips is signed with Red Hat master key
  • tetex-afm is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-afm is signed with Red Hat master key
  • tetex-xdvi is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-xdvi is signed with Red Hat master key
  • tetex-fonts is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-fonts is signed with Red Hat master key
    • Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • tetex is earlier than 0:1.0.7-67.9
  • AND tetex is signed with Red Hat master key
  • tetex-afm is earlier than 0:1.0.7-67.9
  • AND tetex-afm is signed with Red Hat master key
  • tetex-doc is earlier than 0:1.0.7-67.9
  • AND tetex-doc is signed with Red Hat master key
  • tetex-dvips is earlier than 0:1.0.7-67.9
  • AND tetex-dvips is signed with Red Hat master key
  • tetex-fonts is earlier than 0:1.0.7-67.9
  • AND tetex-fonts is signed with Red Hat master key
  • tetex-latex is earlier than 0:1.0.7-67.9
  • AND tetex-latex is signed with Red Hat master key
  • tetex-xdvi is earlier than 0:1.0.7-67.9
  • AND tetex-xdvi is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • tetex is earlier than 0:2.0.2-22.EL4.7
  • AND tetex is signed with Red Hat master key
  • tetex-afm is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-afm is signed with Red Hat master key
  • tetex-doc is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-doc is signed with Red Hat master key
  • tetex-dvips is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-dvips is signed with Red Hat master key
  • tetex-fonts is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-fonts is signed with Red Hat master key
  • tetex-latex is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-latex is signed with Red Hat master key
  • tetex-xdvi is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-xdvi is signed with Red Hat master key
    • Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • tetex is earlier than 0:2.0.2-22.EL4.7
  • AND tetex is signed with Red Hat redhatrelease2 key
  • tetex-afm is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-afm is signed with Red Hat redhatrelease2 key
  • tetex-doc is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-doc is signed with Red Hat redhatrelease2 key
  • tetex-dvips is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-dvips is signed with Red Hat redhatrelease2 key
  • tetex-fonts is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-fonts is signed with Red Hat redhatrelease2 key
  • tetex-latex is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-latex is signed with Red Hat redhatrelease2 key
  • tetex-xdvi is earlier than 0:2.0.2-22.EL4.7
  • AND tetex-xdvi is signed with Red Hat redhatrelease2 key
    • BACK