Oval Definition:	oval:org.mitre.oval:def:23118
Revision Date: 2014-07-21 Version: 44 Title: ELSA-2012:1201: tetex security update (Moderate) Description: Off-by-one error in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service (application crash) via a PDF document containing a crafted Type 1 font that triggers an invalid memory read, integer overflow, and invalid pointer dereference, a different vulnerability than CVE-2011-0764. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2010-2642 CVE-2010-3702 CVE-2010-3704 CVE-2011-0433 CVE-2011-0764 CVE-2011-1552 CVE-2011-1553 CVE-2011-1554 ELSA-2012:1201-00 Platform(s): Oracle Linux 5 Product(s): tetex Definition Synopsis Oracle Linux 5.x AND rpm test tetex-latex is earlier than 0:3.0-33.15.el5_8.1 OR tetex-doc is earlier than 0:3.0-33.15.el5_8.1 OR tetex is earlier than 0:3.0-33.15.el5_8.1 OR tetex-xdvi is earlier than 0:3.0-33.15.el5_8.1 OR tetex-afm is earlier than 0:3.0-33.15.el5_8.1 OR tetex-dvips is earlier than 0:3.0-33.15.el5_8.1 OR tetex-fonts is earlier than 0:3.0-33.15.el5_8.1
BACK