Vulnerability in Tug Tetex
CVE-2010-1440
Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a special command in a DVI fi…
EPSS: 0.029 (86.5th percentile) — read the EPSS interpretation.
Affected products
- Tug Tetex
- Tug Tex_live — versions 1996, 2004, 2000
- N/a — versions n/a
Weakness classification (CWE)
References
- GLSA-201206-28 (vendor-advisory, x_refsource_GENTOO)
- SUSE-SR:2010:013 (vendor-advisory, x_refsource_SUSE)
- secalert@redhat.com (x_refsource_CONFIRM)
- SUSE-SR:2010:012 (vendor-advisory, x_refsource_SUSE)
- FEDORA-2010-8273 (x_refsource_FEDORA, vendor-advisory)
- oval:org.mitre.oval:def:10068 (x_refsource_OVAL, signature, vdb-entry)
- USN-937-1 (x_refsource_UBUNTU, vendor-advisory)