DSA-4299-1 texlive-bin -- texlive-binID: oval:org.secpod.oval:def:603524 | Date: (C)2018-10-01 (M)2023-12-20 |
Class: PATCH | Family: unix |
Nick Roessler from the University of Pennsylvania has found a buffer overflow in texlive-bin, the executables for TexLive, the popular distribution of TeX document production system. This buffer overflow can be used for arbitrary code execution by crafting a special type1 font and provide it to users running pdftex, dvips or luatex in a way that the font is loaded.
Product: |
libptexenc-dev |
libkpathsea-dev |
texlive-binaries |
libtexluajit2 |
libtexluajit-dev |
libkpathsea6 |
libtexlua52 |
libsynctex-dev |
libptexenc1 |
libsynctex1 |