<<< Date Index >>>     <<< Thread Index >>>

[ MDKSA-2007:164 ] - Updated tetex packages fix multiple vulnerabilities



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2007:164
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : tetex
 Date    : August 14, 2007
 Affected: 2007.0, 2007.1, Corporate 4.0
 _______________________________________________________________________
 
 Problem Description:
 
 Maurycy Prodeus found an integer overflow vulnerability in the way
 various PDF viewers processed PDF files.  An attacker could create
 a malicious PDF file that could cause tetex to crash and possibly
 execute arbitrary code open a user opening the file.
 
 In addition, tetex contains an embedded copy of the GD library which
 suffers from a number of bugs which potentially lead to denial of
 service and possibly other issues.
 
 Integer overflow in gdImageCreateTrueColor function in the GD Graphics
 Library (libgd) before 2.0.35 allows user-assisted remote attackers
 to have unspecified remote attack vectors and impact. (CVE-2007-3472)
 
 The gdImageCreateXbm function in the GD Graphics Library (libgd)
 before 2.0.35 allows user-assisted remote attackers to cause a denial
 of service (crash) via unspecified vectors involving a gdImageCreate
 failure. (CVE-2007-3473)
 
 Multiple unspecified vulnerabilities in the GIF reader in the
 GD Graphics Library (libgd) before 2.0.35 allow user-assisted
 remote attackers to have unspecified attack vectors and
 impact. (CVE-2007-3474)
 
 The GD Graphics Library (libgd) before 2.0.35 allows user-assisted
 remote attackers to cause a denial of service (crash) via a GIF image
 that has no global color map. (CVE-2007-3475)
 
 Array index error in gd_gif_in.c in the GD Graphics Library (libgd)
 before 2.0.35 allows user-assisted remote attackers to cause
 a denial of service (crash and heap corruption) via large color
 index values in crafted image data, which results in a segmentation
 fault. (CVE-2007-3476)
 
 The (a) imagearc and (b) imagefilledarc functions in GD Graphics
 Library (libgd) before 2.0.35 allows attackers to cause a denial
 of service (CPU consumption) via a large (1) start or (2) end angle
 degree value. (CVE-2007-3477)
 
 Race condition in gdImageStringFTEx (gdft_draw_bitmap) in gdft.c in the
 GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote
 attackers to cause a denial of service (crash) via unspecified vectors,
 possibly involving truetype font (TTF) support. (CVE-2007-3478)
 
 Updated packages have been patched to prevent these issues.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3387
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3472
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3473
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3474
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3475
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3476
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3477
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3478
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.0:
 fb959e3f6f872b50954fa8da4fe3c419  
2007.0/i586/jadetex-3.12-116.4mdv2007.0.i586.rpm
 02e7b28c729ec9f57d5268daedee85e7  2007.0/i586/tetex-3.0-18.4mdv2007.0.i586.rpm
 8b89557fbac6f6b37f78f2a2aee16569  
2007.0/i586/tetex-afm-3.0-18.4mdv2007.0.i586.rpm
 f5169a380ec30b11a69b37c38e81555f  
2007.0/i586/tetex-context-3.0-18.4mdv2007.0.i586.rpm
 f4dbfde981fd4658044222bc159ecd41  
2007.0/i586/tetex-devel-3.0-18.4mdv2007.0.i586.rpm
 e0f85c8410194f78ba2aea95e4f9483b  
2007.0/i586/tetex-doc-3.0-18.4mdv2007.0.i586.rpm
 9753cb8ba53e41a19bdd46bd21d149e0  
2007.0/i586/tetex-dvilj-3.0-18.4mdv2007.0.i586.rpm
 bf28b703c43dea8ddedd6b3dd31d6d4d  
2007.0/i586/tetex-dvipdfm-3.0-18.4mdv2007.0.i586.rpm
 456feadedb60e9b8f0fa653a4b8c242c  
2007.0/i586/tetex-dvips-3.0-18.4mdv2007.0.i586.rpm
 596d3a551105ed4ae7504069d97ea15b  
2007.0/i586/tetex-latex-3.0-18.4mdv2007.0.i586.rpm
 0fa6f2279adff2c0e49e021342684962  
2007.0/i586/tetex-mfwin-3.0-18.4mdv2007.0.i586.rpm
 4dfbc03ccff172c0031f3b66f49f2e67  
2007.0/i586/tetex-texi2html-3.0-18.4mdv2007.0.i586.rpm
 3fe94235dcf1d60559c5e22dcb661135  
2007.0/i586/tetex-xdvi-3.0-18.4mdv2007.0.i586.rpm
 50face08da8982afdcaa653c46d23893  
2007.0/i586/xmltex-1.9-64.4mdv2007.0.i586.rpm 
 63549bc50b3b654e72be1947d1b3d79b  2007.0/SRPMS/tetex-3.0-18.4mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 3ba044a5b0cbd36b27fa8ebd60d51e8d  
2007.0/x86_64/jadetex-3.12-116.4mdv2007.0.x86_64.rpm
 94b050b17693804a81e68107b37aade8  
2007.0/x86_64/tetex-3.0-18.4mdv2007.0.x86_64.rpm
 dca2d262c4345720681e776de7aaf3b5  
2007.0/x86_64/tetex-afm-3.0-18.4mdv2007.0.x86_64.rpm
 6387c4e3923b174732ea42e1c1961f31  
2007.0/x86_64/tetex-context-3.0-18.4mdv2007.0.x86_64.rpm
 9e31f83c40c6bf2bd0528fd8debc7da0  
2007.0/x86_64/tetex-devel-3.0-18.4mdv2007.0.x86_64.rpm
 b61e81383f6becccb285e0e9e3c04fc8  
2007.0/x86_64/tetex-doc-3.0-18.4mdv2007.0.x86_64.rpm
 ff32dc4e3ee6c9ce2e7160e0e2e8d000  
2007.0/x86_64/tetex-dvilj-3.0-18.4mdv2007.0.x86_64.rpm
 d4bf450a8fc9da8d97cb03a5fd895e5d  
2007.0/x86_64/tetex-dvipdfm-3.0-18.4mdv2007.0.x86_64.rpm
 9bb0bb329efda5960b7c43cab4bb60a8  
2007.0/x86_64/tetex-dvips-3.0-18.4mdv2007.0.x86_64.rpm
 a6e2b2af59a022db1ccc897d78fd3df1  
2007.0/x86_64/tetex-latex-3.0-18.4mdv2007.0.x86_64.rpm
 6fdee1957e97c37034bafd9546071553  
2007.0/x86_64/tetex-mfwin-3.0-18.4mdv2007.0.x86_64.rpm
 a10d83249b768f676eabcbdc8d1def85  
2007.0/x86_64/tetex-texi2html-3.0-18.4mdv2007.0.x86_64.rpm
 71907f30dc7beb72245329e3df4f3d13  
2007.0/x86_64/tetex-xdvi-3.0-18.4mdv2007.0.x86_64.rpm
 824f5631d126e96851540ce059f378a6  
2007.0/x86_64/xmltex-1.9-64.4mdv2007.0.x86_64.rpm 
 63549bc50b3b654e72be1947d1b3d79b  2007.0/SRPMS/tetex-3.0-18.4mdv2007.0.src.rpm

 Mandriva Linux 2007.1:
 81f9fad03bffde4848b2684b0beaf1be  
2007.1/i586/jadetex-3.12-129.3mdv2007.1.i586.rpm
 240f0698cc266be75607780ca95f7df9  2007.1/i586/tetex-3.0-31.3mdv2007.1.i586.rpm
 adaa2d6fa7128e0c1ef125c5b2a27bd1  
2007.1/i586/tetex-afm-3.0-31.3mdv2007.1.i586.rpm
 143aa48143998f5ffd5877fb348c06c3  
2007.1/i586/tetex-context-3.0-31.3mdv2007.1.i586.rpm
 3a3b1e82a1fb3e2260eeac49bd038d44  
2007.1/i586/tetex-devel-3.0-31.3mdv2007.1.i586.rpm
 98781fd21fae15a9d190387bb7c894fa  
2007.1/i586/tetex-doc-3.0-31.3mdv2007.1.i586.rpm
 162cc4138d291f34e17589dcbaf47e02  
2007.1/i586/tetex-dvilj-3.0-31.3mdv2007.1.i586.rpm
 c290665965a32365750302b66998cf9c  
2007.1/i586/tetex-dvipdfm-3.0-31.3mdv2007.1.i586.rpm
 521a43054786848837cadf65d7373adb  
2007.1/i586/tetex-dvips-3.0-31.3mdv2007.1.i586.rpm
 db59616b644d2d040bf20bba50b98a52  
2007.1/i586/tetex-latex-3.0-31.3mdv2007.1.i586.rpm
 42b078d4e8b5ecfa43cecd105cfd9973  
2007.1/i586/tetex-mfwin-3.0-31.3mdv2007.1.i586.rpm
 d80a680507279c769af4eac68342779e  
2007.1/i586/tetex-texi2html-3.0-31.3mdv2007.1.i586.rpm
 6ad4a6a5df7c31302c0d8f0294b441fe  
2007.1/i586/tetex-usrlocal-3.0-31.3mdv2007.1.i586.rpm
 a636c345e691cfcad8bb057aa724ca32  
2007.1/i586/tetex-xdvi-3.0-31.3mdv2007.1.i586.rpm
 81cb470114d43d4ba480c7ef38ad8f9b  
2007.1/i586/xmltex-1.9-77.3mdv2007.1.i586.rpm 
 1fe7e7ec1366f1c03208b9acf2c6e4dc  2007.1/SRPMS/tetex-3.0-31.3mdv2007.1.src.rpm

 Mandriva Linux 2007.1/X86_64:
 931bdcfab39b511372c0fe1667cdec9b  
2007.1/x86_64/jadetex-3.12-129.3mdv2007.1.x86_64.rpm
 be2917b026909b9fe2d6f54425f0ae01  
2007.1/x86_64/tetex-3.0-31.3mdv2007.1.x86_64.rpm
 3927b9a088b3dbbb035ab504724224fa  
2007.1/x86_64/tetex-afm-3.0-31.3mdv2007.1.x86_64.rpm
 5e0dc9457f6e864bfd097e52540ca691  
2007.1/x86_64/tetex-context-3.0-31.3mdv2007.1.x86_64.rpm
 c360e8b3bb98ee7f7467028038e97e1a  
2007.1/x86_64/tetex-devel-3.0-31.3mdv2007.1.x86_64.rpm
 d48d985a35aa93c17c45349c28c0b243  
2007.1/x86_64/tetex-doc-3.0-31.3mdv2007.1.x86_64.rpm
 eb67ec1e91e422ecfa36f1cbbac8971a  
2007.1/x86_64/tetex-dvilj-3.0-31.3mdv2007.1.x86_64.rpm
 851858c723458b732e522a3c0e61369c  
2007.1/x86_64/tetex-dvipdfm-3.0-31.3mdv2007.1.x86_64.rpm
 a0eda317da29934a5633f42b177a530f  
2007.1/x86_64/tetex-dvips-3.0-31.3mdv2007.1.x86_64.rpm
 753c701f03329627fb9e39753981e843  
2007.1/x86_64/tetex-latex-3.0-31.3mdv2007.1.x86_64.rpm
 d994a4854aba90786bbd9a4ec3c12019  
2007.1/x86_64/tetex-mfwin-3.0-31.3mdv2007.1.x86_64.rpm
 e655586388e11bf71063402efc3a7753  
2007.1/x86_64/tetex-texi2html-3.0-31.3mdv2007.1.x86_64.rpm
 9d5f65b626bd71949a07e6c7431817e0  
2007.1/x86_64/tetex-usrlocal-3.0-31.3mdv2007.1.x86_64.rpm
 55315fd53192e1d99eee611c658d803e  
2007.1/x86_64/tetex-xdvi-3.0-31.3mdv2007.1.x86_64.rpm
 64af62bd89fcac2a4ffad45a8eae77d6  
2007.1/x86_64/xmltex-1.9-77.3mdv2007.1.x86_64.rpm 
 1fe7e7ec1366f1c03208b9acf2c6e4dc  2007.1/SRPMS/tetex-3.0-31.3mdv2007.1.src.rpm

 Corporate 4.0:
 ded203c11a86b123fb65dccf7ebefe7b  
corporate/4.0/i586/jadetex-3.12-110.6.20060mlcs4.i586.rpm
 02ca90145d6b09cdd92bc9906a9dfa41  
corporate/4.0/i586/tetex-3.0-12.6.20060mlcs4.i586.rpm
 9af4a0c59bf34cb69ec03feeecc10b51  
corporate/4.0/i586/tetex-afm-3.0-12.6.20060mlcs4.i586.rpm
 c4a7cdb06beb70e2652fee997cd5acd1  
corporate/4.0/i586/tetex-context-3.0-12.6.20060mlcs4.i586.rpm
 4d4e89d588e0ec5a1a30659b194e53a7  
corporate/4.0/i586/tetex-devel-3.0-12.6.20060mlcs4.i586.rpm
 7ae26e309360bdfdb9c5c503b0d4edf9  
corporate/4.0/i586/tetex-doc-3.0-12.6.20060mlcs4.i586.rpm
 302004f96913e500079054ecb03adda9  
corporate/4.0/i586/tetex-dvilj-3.0-12.6.20060mlcs4.i586.rpm
 00cd5bce374228d46b18d5b2210639f9  
corporate/4.0/i586/tetex-dvipdfm-3.0-12.6.20060mlcs4.i586.rpm
 f216bf18966462b172832a6f8a27fd78  
corporate/4.0/i586/tetex-dvips-3.0-12.6.20060mlcs4.i586.rpm
 f1b3b6fcb547e477570f1311fa7367a0  
corporate/4.0/i586/tetex-latex-3.0-12.6.20060mlcs4.i586.rpm
 86eb52c3286302e3343928a7bdeb9548  
corporate/4.0/i586/tetex-mfwin-3.0-12.6.20060mlcs4.i586.rpm
 a769eab0038bac03e47a72b634f79e19  
corporate/4.0/i586/tetex-texi2html-3.0-12.6.20060mlcs4.i586.rpm
 fd8530a3177047b3dd9ad9f5c1116020  
corporate/4.0/i586/tetex-xdvi-3.0-12.6.20060mlcs4.i586.rpm
 7d647f0f6d3db2a9a0f3b6be1fcb672c  
corporate/4.0/i586/xmltex-1.9-58.6.20060mlcs4.i586.rpm 
 8118fdc39814ac5d79b8763a5eaeee61  
corporate/4.0/SRPMS/tetex-3.0-12.6.20060mlcs4.src.rpm

 Corporate 4.0/X86_64:
 03656d00a3a0ab1847acb665ef68d947  
corporate/4.0/x86_64/jadetex-3.12-110.6.20060mlcs4.x86_64.rpm
 df2818955a171b5e682b2e481ea456f0  
corporate/4.0/x86_64/tetex-3.0-12.6.20060mlcs4.x86_64.rpm
 b33cd2edda19f78a7fc67d5fff165b0a  
corporate/4.0/x86_64/tetex-afm-3.0-12.6.20060mlcs4.x86_64.rpm
 7d5818ed21c76ed6ea5db364fb4e9693  
corporate/4.0/x86_64/tetex-context-3.0-12.6.20060mlcs4.x86_64.rpm
 58f46f75a1d4df827911727ebacbc352  
corporate/4.0/x86_64/tetex-devel-3.0-12.6.20060mlcs4.x86_64.rpm
 edc968cfaa147eb6c0a44d367945cdee  
corporate/4.0/x86_64/tetex-doc-3.0-12.6.20060mlcs4.x86_64.rpm
 cbb35ba57e6b7e4ff5e1f7746a556dba  
corporate/4.0/x86_64/tetex-dvilj-3.0-12.6.20060mlcs4.x86_64.rpm
 64037dfd41b52942db831d5d1db263ae  
corporate/4.0/x86_64/tetex-dvipdfm-3.0-12.6.20060mlcs4.x86_64.rpm
 521ac94898d0dd328a72b41a897cac77  
corporate/4.0/x86_64/tetex-dvips-3.0-12.6.20060mlcs4.x86_64.rpm
 7b08d2c8978a0d020d8bd29478e9300c  
corporate/4.0/x86_64/tetex-latex-3.0-12.6.20060mlcs4.x86_64.rpm
 2c8045b7090444ae36576040d4106399  
corporate/4.0/x86_64/tetex-mfwin-3.0-12.6.20060mlcs4.x86_64.rpm
 3124bf387e243377003b3bf21d34b6b9  
corporate/4.0/x86_64/tetex-texi2html-3.0-12.6.20060mlcs4.x86_64.rpm
 88ea09f36b9281e64061a2ca25d10719  
corporate/4.0/x86_64/tetex-xdvi-3.0-12.6.20060mlcs4.x86_64.rpm
 e34498cb80e93ccd2b592ff8a722b985  
corporate/4.0/x86_64/xmltex-1.9-58.6.20060mlcs4.x86_64.rpm 
 8118fdc39814ac5d79b8763a5eaeee61  
corporate/4.0/SRPMS/tetex-3.0-12.6.20060mlcs4.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  <security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)

iD8DBQFGwgCrmqjQ0CJFipgRAvxaAKD0oN2+nbJYsb/02Pfv7e91rH+OwQCgoNcD
E25vkVsg47bEpt/Rv8lWmms=
=oC5G
-----END PGP SIGNATURE-----