Mehrere Probleme in tetex
ID: | FEDORA-2005-1127 |
Distribution: | Fedora |
Plattformen: | Fedora Core 3 |
Datum: | Mi, 7. Dezember 2005, 16:57 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3193 |
Applikationen: | teTeX |
Originalnachricht |
|
--------------------------------------------------------------------- Fedora Update Notification FEDORA-2005-1127 2005-12-07 --------------------------------------------------------------------- Product : Fedora Core 3 Name : tetex Version : 2.0.2 Release : 21.5 Summary : The TeX text formatting system. Description : TeTeX is an implementation of TeX for Linux or UNIX systems. TeX takes a text file and a set of formatting commands as input and creates a typesetter-independent .dvi (DeVice Independent) file as output. Usually, TeX is used in conjunction with a higher level formatting package like LaTeX or PlainTeX, since TeX by itself is not very user-friendly. Install tetex if you want to use the TeX text formatting system. If you are installing tetex, you will also need to install tetex-afm (a PostScript(TM) font converter for TeX), tetex-dvips (for converting .dvi files to PostScript format for printing on PostScript printers), tetex-latex (a higher level formatting package which provides an easier-to-use interface for TeX), and tetex-xdvi (for previewing .dvi files in X). Unless you are an expert at using TeX, you should also install the tetex-doc package, which includes the documentation for TeX. --------------------------------------------------------------------- Update Information: Several flaws were discovered in Xpdf. An attacker could construct a carefully crafted PDF file that could cause Xpdf to crash or possibly execute arbitrary code when opened. The teTeX package contains a copy of the Xpdf code used for parsing PDF files and is therefore affected by this bug.The Common Vulnerabilities and Exposures project assigned the name CAN-2005-3193 to these issues. Users of teTeX should upgrade to this updated package, which contains a patch to resolve these issues. --------------------------------------------------------------------- * Tue Dec 6 2005 Jindrich Novy |