cpe:/a:tug:tetex cpe:/a:tug:tex_live CVE-2010-0739 2010-04-16T14:30:00.383-04:00 2017-09-18T21:30:29.017-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2010-04-19T09:15:00.000-04:00 SECUNIA 39390 BID 39500 FEDORA FEDORA-2010-8273 GENTOO GLSA-201206-28 SUSE SUSE-SR:2010:012 SUSE SUSE-SR:2010:013 UBUNTU USN-937-1 CONFIRM http://git.frugalware.org/gitweb/gitweb.cgi?p=frugalware-stable.git;a=blob;f=source/xapps-extra/tetex/texlive-CVE-2010-0739-int-overflow.patch CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=572941 Integer overflow in the predospecial function in dospecial.c in dvips in (1) TeX Live and (2) teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.