Debian Texlive-Bin vulnerabilities

CVE-2015-5701 [MEDIUM] CVE-2015-5701: texlive-bin - mktexlsr revision 36855, and before revision 36626 as packaged in texlive allows... mktexlsr revision 36855, and before revision 36626 as packaged in texlive allows local users to write to arbitrary files via a symlink attack. NOTE: this vulnerability exists due to the reversion of a fix of CVE-2015-5700. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2014-9495 [HIGH] CVE-2014-9495: libpng1.6 - Heap-based buffer overflow in the png_combine_row function in libpng before 1.5.... Heap-based buffer overflow in the png_combine_row function in libpng before 1.5.21 and 1.6.x before 1.6.16, when running on 64-bit systems, might allow context-dependent attackers to execute arbitrary code via a "very wide interlaced" PNG image. Scope: local bookworm: resolved (fixed in 1.6.16-1) bullseye: resolved (fixed in 1.6.16-1) forky: resolved (fixed in 1.6.1

CVE-2010-0739 [MEDIUM] CVE-2010-0739: texlive-bin - Integer overflow in the predospecial function in dospecial.c in dvips in (1) TeX... Integer overflow in the predospecial function in dospecial.c in dvips in (1) TeX Live and (2) teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information. Scope: local bookworm: resolved (fixed in 2009-6) bullsey

CVE-2010-0829 [MEDIUM] CVE-2010-0829: dvipng - Multiple array index errors in set.c in dvipng 1.11 and 1.12, and teTeX, allow r... Multiple array index errors in set.c in dvipng 1.11 and 1.12, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed DVI file. Scope: local bookworm: resolved (fixed in 1.13-1) bullseye: resolved (fixed in 1.13-1) forky: resolved (fixed in 1.13-1) sid: resolved (fixed in 1.13-1) trixie: re

CVE-2010-0827 [MEDIUM] CVE-2010-0827: texlive-bin - Integer overflow in dvips in TeX Live 2009 and earlier, and teTeX, allows remote... Integer overflow in dvips in TeX Live 2009 and earlier, and teTeX, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted virtual font (VF) file associated with a DVI file. Scope: local bookworm: resolved (fixed in 2009-6) bullseye: resolved (fixed in 2009-6) forky: resolved (fixed in 2009-6) sid

CVE-2010-1440 [MEDIUM] CVE-2010-1440: texlive-bin - Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and e... Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a special command in a DVI file, related to the (1) predospecial and (2) bbdospecial functions, a different vulnerability than CVE-2010-0739. Scope: local

CVE-2009-3720 [MEDIUM] CVE-2009-3720: audacity - The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as ... The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625. Scope: local bookwor

CVE-2009-1284 [MEDIUM] CVE-2009-1284: texlive-bin - Buffer overflow in BibTeX 0.99 allows context-dependent attackers to cause a den... Buffer overflow in BibTeX 0.99 allows context-dependent attackers to cause a denial of service (memory corruption and crash) via a long .bib bibliography file. Scope: local bookworm: resolved (fixed in 2009-1) bullseye: resolved (fixed in 2009-1) forky: resolved (fixed in 2009-1) sid: resolved (fixed in 2009-1) trixie: resolved (fixed in 2009-1)

CVE-2009-3560 [MEDIUM] CVE-2009-3560: audacity - The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in ... The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with malformed UTF-8 sequences that trigger a buffer over-read, related to the doProlog function in lib/xmlparse.c, a different vulnerability than CVE-20

CVE-2008-1693 [MEDIUM] CVE-2008-1693: poppler - The CairoFont::create function in CairoFontEngine.cc in Poppler, possibly before... The CairoFont::create function in CairoFontEngine.cc in Poppler, possibly before 0.8.0, as used in Xpdf, Evince, ePDFview, KWord, and other applications, does not properly handle embedded fonts in PDF files, which allows remote attackers to execute arbitrary code via a crafted font object, related to dereferencing a function pointer associated with the type of this

CVE-2007-5940 [MEDIUM] CVE-2007-5940: feynmf - feynmf.pl in feynmf 1.08, as used in TeXLive 2007, allows local users to overwri... feynmf.pl in feynmf 1.08, as used in TeXLive 2007, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the feynmf$$.pl temporary file. Scope: local bookworm: resolved (fixed in 1.08-1) bullseye: resolved (fixed in 1.08-1) forky: resolved (fixed in 1.08-1) sid: resolved (fixed in 1.08-1) trixie: resolved (fixed in 1.08-1)

CVE-2007-5937 [MEDIUM] CVE-2007-5937: texlive-bin - Multiple buffer overflows in dvi2xx.c in dviljk in teTeX and TeXlive 2007 and ea... Multiple buffer overflows in dvi2xx.c in dviljk in teTeX and TeXlive 2007 and earlier might allow user-assisted attackers to execute arbitrary code via a crafted DVI input file. Scope: local bookworm: resolved (fixed in 2007-13) bullseye: resolved (fixed in 2007-13) forky: resolved (fixed in 2007-13) sid: resolved (fixed in 2007-13) trixie: resolved (fixed in 20

CVE-2007-5935 [MEDIUM] CVE-2007-5935: texlive-bin - Stack-based buffer overflow in hpc.c in dvips in teTeX and TeXlive 2007 and earl... Stack-based buffer overflow in hpc.c in dvips in teTeX and TeXlive 2007 and earlier allows user-assisted attackers to execute arbitrary code via a DVI file with a long href tag. Scope: local bookworm: resolved (fixed in 2007.dfsg.1-1) bullseye: resolved (fixed in 2007.dfsg.1-1) forky: resolved (fixed in 2007.dfsg.1-1) sid: resolved (fixed in 2007.dfsg.1-1) trixi

CVE-2007-5936 [LOW] CVE-2007-5936: texlive-bin - dvips in teTeX and TeXlive 2007 and earlier allows local users to obtain sensiti... dvips in teTeX and TeXlive 2007 and earlier allows local users to obtain sensitive information and modify certain data by creating certain temporary files before they are processed by dviljk, which can then be read or modified in place. Scope: local bookworm: resolved (fixed in 2007-13) bullseye: resolved (fixed in 2007-13) forky: resolved (fixed in 2007-13) sid: r