CVE-2010-0739Integer Overflow or Wraparound in TEX Live

CWE-189CWE-190Integer Overflow or Wraparound14 documents7 sources
Severity
6.8MEDIUMNVD
EPSS
7.7%
top 8.07%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Debian Texlive-binTUG TEX Live
Timeline
PublishedApr 16
Latest updateMay 2

Description

Integer overflow in the predospecial function in dospecial.c in dvips in (1) TeX Live and (2) teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages2 packages

debiandebian/texlive-bin< texlive-bin 2009-6 (bookworm)
NVDtug/tex_live2009+11

🔴Vulnerability Details

4
GHSA
GHSA-p26p-qrwm-pp59: Multiple integer overflows in dvipsk/dospecial2022-05-02
GHSA
GHSA-g329-cmhw-r62r: Integer overflow in the predospecial function in dospecial2022-05-02
OSV
CVE-2010-1440: Multiple integer overflows in dvipsk/dospecial2010-05-07
OSV
CVE-2010-0739: Integer overflow in the predospecial function in dospecial2010-04-16

📋Vendor Advisories

5
Ubuntu
TeX Live vulnerabilities2010-05-06
Red Hat
texlive: Integer overflow by processing special commands2010-05-03
Red Hat
texlive: Integer overflow by processing special commands2010-04-12
Debian
CVE-2010-0739: texlive-bin - Integer overflow in the predospecial function in dospecial.c in dvips in (1) TeX...2010
Debian
CVE-2010-1440: texlive-bin - Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and e...2010

💬Community

3
Bugzilla
CVE-2010-1440 tetex, texlive: Integer overflow by processing special commands2010-04-28
Bugzilla
CVE-2010-0739 CVE-2010-1440 texlive: Integer overflow by processing special commands [Fedora all]2010-04-22
Bugzilla
CVE-2010-0739 tetex, texlive: Integer overflow by processing special commands2010-03-12