Oval Definition:oval:org.mitre.oval:def:20742
Revision Date:2014-02-24Version:87
Title:RHSA-2012:0062: t1lib security update (Moderate)
Description:Off-by-one error in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service (application crash) via a PDF document containing a crafted Type 1 font that triggers an invalid memory read, integer overflow, and invalid pointer dereference, a different vulnerability than CVE-2011-0764.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2012:0062
CVE-2010-2642
CVE-2011-0433
CVE-2011-0764
CVE-2011-1552
CVE-2011-1553
CVE-2011-1554
RHSA-2012:0062-01
Platform(s):CentOS Linux 6
Red Hat Enterprise Linux 6
Product(s):t1lib
Definition Synopsis
  • Redhat 6 or Centos 6 release
  • The operating system installed on the system is Red Hat Enterprise Linux 6
  • OR The operating system installed on the system is CentOS Linux 6.x
  • AND Packages section
  • t1lib is earlier than 0:5.1.2-6.el6_2.1
  • OR t1lib-apps is earlier than 0:5.1.2-6.el6_2.1
  • OR t1lib-devel is earlier than 0:5.1.2-6.el6_2.1
  • OR t1lib-static is earlier than 0:5.1.2-6.el6_2.1
  • BACK