This is the mail archive of the
cygwin-apps
mailing list for the Cygwin project.
SECURITY: tetex (CVE-2005-3193)
- From: "Yaakov S (Cygwin Ports)" <yselkowitz at users dot sourceforge dot net>
- To: cygwin-apps at cygwin dot com
- Date: Fri, 10 Mar 2006 14:18:27 -0600
- Subject: SECURITY: tetex (CVE-2005-3193)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
teTeX includes vulnerable XPdf code to handle PDF files, making it
vulnerable to the execution of arbitrary code.
Solution: apply this patch:
http://www.gentoo.org/cgi-bin/viewcvs.cgi/*checkout*/app-text/tetex/files/tetex-3.0_p1-xpdf-vulnerabilities.patch
More information:
http://www.gentoo.org/security/en/glsa/glsa-200603-02.xml
http://bugs.gentoo.org/show_bug.cgi?id=115775
Yaakov
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.1 (Cygwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFEEd8TpiWmPGlmQSMRAmzbAJkBp0ILiBObrIYuptPqhv+xLkBWOgCcDZAV
KyzSQE70Y+GpFwC1slPLKgg=
=oVZg
-----END PGP SIGNATURE-----