Hi,
* Hilmar Preusse <[EMAIL PROTECTED]> [2008-12-01 18:17]:
> On 01.12.08 Nico Golde ([EMAIL PROTECTED]) wrote:
[...]
> > http://packages.debian.org/changelogs/pool/main/t/texlive-bin/texlive-bin_2005.dfsg.2-12/changelog
> > Can't see anything in the stable version related to this CVE
> > id.
>
On 01.12.08 Nico Golde ([EMAIL PROTECTED]) wrote:
> * Hilmar Preusse <[EMAIL PROTECTED]> [2008-12-01 15:16]:
> > On 30.11.08 Nico Golde ([EMAIL PROTECTED]) wrote:
Hi,
> > > the following CVE (Common Vulnerabilities & Exposures) id was
> > > published for texlive-bin some time ago.
> > >
> > > CV
Hi Nico,
> Can't see anything in the stable version related to this CVE
Aemmm, I am slowly getting at it, you are speaking about TeX Live 2005.
Right, none of these are fixed in the 2005 packages.
I will see if I can look into that, the patches are here, but someone
(probably me if I find time
Hi,
* Hilmar Preusse <[EMAIL PROTECTED]> [2008-12-01 15:16]:
> On 30.11.08 Nico Golde ([EMAIL PROTECTED]) wrote:
> > the following CVE (Common Vulnerabilities & Exposures) id was
> > published for texlive-bin some time ago.
> >
> > CVE-2007-5935[0]:
> >
> This CVE number is/was already in the cha
On 30.11.08 Nico Golde ([EMAIL PROTECTED]) wrote:
Hi,
> the following CVE (Common Vulnerabilities & Exposures) id was
> published for texlive-bin some time ago.
>
> CVE-2007-5935[0]:
>
This CVE number is/was already in the changelog of texlive-base-bin.
> CVE-2007-5936[1]:
>
> CVE-2007-5937[2
On Sun, 30 Nov 2008, Nico Golde wrote:
> CVE-2007-5935[0]:
> | Stack-based buffer overflow in hpc.c in dvips in teTeX and TeXlive
> | 2007 and earlier allows user-assisted attackers to execute arbitrary
> | code via a DVI file with a long href tag.
already fixed in 2007.dfsg.1-1
patch hps-segfault
6 matches
Mail list logo
