CVE-2010-1440 — Integer Overflow or Wraparound in TEX Live

CWE-190 — Integer Overflow or Wraparound9 documents7 sources

Severity

6.8MEDIUMNVD

EPSS

2.9%

top 13.75%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Debian Texlive-bin TUG TEX Live

Timeline

PublishedMay 7

Latest updateMay 2

Description

Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a special command in a DVI file, related to the (1) predospecial and (2) bbdospecial functions, a different vulnerability than CVE-2010-0739.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages2 packages

▶debiandebian/texlive-bin< texlive-bin 2009-6 (bookworm)

▶NVDtug/tex_live2009+11

🔴Vulnerability Details

GHSA

GHSA-p26p-qrwm-pp59: Multiple integer overflows in dvipsk/dospecial↗2022-05-02

▶

OSV

CVE-2010-1440: Multiple integer overflows in dvipsk/dospecial↗2010-05-07

▶

📋Vendor Advisories

Ubuntu

TeX Live vulnerabilities↗2010-05-06

▶

Red Hat

texlive: Integer overflow by processing special commands↗2010-05-03

▶

Debian

CVE-2010-1440: texlive-bin - Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and e...↗2010

▶

💬Community

Bugzilla

CVE-2010-1440 tetex, texlive: Integer overflow by processing special commands↗2010-04-28

▶

Bugzilla

CVE-2010-0739 CVE-2010-1440 texlive: Integer overflow by processing special commands [Fedora all]↗2010-04-22

▶

Bugzilla

CVE-2010-0739 tetex, texlive: Integer overflow by processing special commands↗2010-03-12

▶