drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mehrere Probleme in tetex
Name: |
Mehrere Probleme in tetex |
|
ID: |
FEDORA-2005-1127 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora Core 3 |
|
Datum: |
Mi, 7. Dezember 2005, 16:57 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3193 |
|
Applikationen: |
teTeX |
|
Originalnachricht |
--------------------------------------------------------------------- Fedora Update Notification FEDORA-2005-1127 2005-12-07 ---------------------------------------------------------------------
Product : Fedora Core 3 Name : tetex Version : 2.0.2 Release : 21.5 Summary : The TeX text formatting system. Description : TeTeX is an implementation of TeX for Linux or UNIX systems. TeX takes a text file and a set of formatting commands as input and creates a typesetter-independent .dvi (DeVice Independent) file as output. Usually, TeX is used in conjunction with a higher level formatting package like LaTeX or PlainTeX, since TeX by itself is not very user-friendly.
Install tetex if you want to use the TeX text formatting system. If you are installing tetex, you will also need to install tetex-afm (a PostScript(TM) font converter for TeX), tetex-dvips (for converting .dvi files to PostScript format for printing on PostScript printers), tetex-latex (a higher level formatting package which provides an easier-to-use interface for TeX), and tetex-xdvi (for previewing .dvi files in X). Unless you are an expert at using TeX, you should also install the tetex-doc package, which includes the documentation for TeX.
--------------------------------------------------------------------- Update Information:
Several flaws were discovered in Xpdf. An attacker could construct a carefully crafted PDF file that could cause Xpdf to crash or possibly execute arbitrary code when opened. The teTeX package contains a copy of the Xpdf code used for parsing PDF files and is therefore affected by this bug.The Common Vulnerabilities and Exposures project assigned the name CAN-2005-3193 to these issues.
Users of teTeX should upgrade to this updated package, which contains a patch to resolve these issues. --------------------------------------------------------------------- * Tue Dec 6 2005 Jindrich Novy <jnovy@redhat.com> 2.0.2-21.5 - apply patch from Derek Noonburg to fix CVE-2005-3193, xpdf buffer overflows (#175110)
* Thu Aug 18 2005 Jindrich Novy <jnovy@redhat.com> - support both .Z and .gz files in psfig.sty (#165203)
* Thu Aug 18 2005 Jindrich Novy <jnovy@redhat.com> 2.0.2-21.4 - enable languages in babel (#11570)
--------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/
802aff298f6378498cdeb9c066907f58 SRPMS/tetex-2.0.2-21.5.src.rpm 3de558321f6874d7f8792c4e2c9c356b x86_64/tetex-2.0.2-21.5.x86_64.rpm 4a5f38be89e62e1e53fc49412e57b49f x86_64/tetex-latex-2.0.2-21.5.x86_64.rpm 6c09295f8a7a7ee13c8fda4fb1666977 x86_64/tetex-xdvi-2.0.2-21.5.x86_64.rpm 92fba9c5adc5833de08718b5b06a8652 x86_64/tetex-dvips-2.0.2-21.5.x86_64.rpm e6164f5961ec833b73d4ed092b746521 x86_64/tetex-afm-2.0.2-21.5.x86_64.rpm c09ca851c6e2eb96da58c7f2c5c14332 x86_64/tetex-fonts-2.0.2-21.5.x86_64.rpm 38d16809b3f7349a39b59909cbeeb8e3 x86_64/tetex-doc-2.0.2-21.5.x86_64.rpm 3f00c57a1f36f1ebed167c330459dbd2 x86_64/debug/tetex-debuginfo-2.0.2-21.5.x86_64.rpm 058258ccc8f766fd3f9421bf7edf6e25 i386/tetex-2.0.2-21.5.i386.rpm c88b931b479a31fc21602dd0313e71fa i386/tetex-latex-2.0.2-21.5.i386.rpm dd3014f1661eec70e9f539f1ca3879ef i386/tetex-xdvi-2.0.2-21.5.i386.rpm a14ea2aa8c1d2a98b6bba78ef6d8e695 i386/tetex-dvips-2.0.2-21.5.i386.rpm 691d45e866472cd14c8a20f736545ad3 i386/tetex-afm-2.0.2-21.5.i386.rpm 4a2db4403fc6c342e8ea0b31ec6f0c4c i386/tetex-fonts-2.0.2-21.5.i386.rpm ea1d7c378365eec467b8a4c73c4fe00e i386/tetex-doc-2.0.2-21.5.i386.rpm adf1bd365b26efec58a4eb02fd9d9d83 i386/debug/tetex-debuginfo-2.0.2-21.5.i386.rpm
This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. ---------------------------------------------------------------------
-- fedora-announce-list mailing list fedora-announce-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-announce-list
|
|
|
|