Mailinglist Archive: opensuse-updates (31 mails)

< Previous Next >
openSUSE-SU-2010:0251-1 (low): texlive security update
  • From: opensuse-security@xxxxxxxxxxxx
  • Date: Fri, 14 May 2010 19:08:12 +0200 (CEST)
  • Message-id: <20100514170812.D93B2BE13@xxxxxxxxxxxxxx>
openSUSE Security Update: texlive security update
______________________________________________________________________________

Announcement ID: openSUSE-SU-2010:0251-1
Rating: low
References: #587794
Cross-References: CVE-2010-0739 CVE-2010-0827 CVE-2010-0829
CVE-2010-1440
Affected Products:
openSUSE 11.2
openSUSE 11.1
openSUSE 11.0
______________________________________________________________________________

An update that fixes four vulnerabilities is now available.

Description:

Specially crafted dvi files could cause buffer overflows in
dvips and dvipng (CVE-2010-0827, CVE-2010-0829,
CVE-2010-0739, CVE-2010-1440).


Patch Instructions:

To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:

- openSUSE 11.2:

zypper in -t patch texlive-2392

- openSUSE 11.1:

zypper in -t patch texlive-2392

- openSUSE 11.0:

zypper in -t patch texlive-2392

To bring your system up-to-date, use "zypper patch".


Package List:

- openSUSE 11.2 (i586 x86_64):

texlive-bin-2008-13.18.1

- openSUSE 11.2 (noarch src):

texlive-2008-13.18.1

- openSUSE 11.2 (noarch):

texlive-arab-2008-13.18.1
texlive-cjk-2008-13.18.1
texlive-context-2008-13.18.1
texlive-devel-2008-13.18.1
texlive-doc-2008-13.18.1
texlive-dvilj-2008-13.18.1
texlive-jadetex-2008-13.18.1
texlive-latex-2008-13.18.1
texlive-latex-doc-2008-13.18.1
texlive-metapost-2008-13.18.1
texlive-musictex-2008-13.18.1
texlive-nfs-2008-13.18.1
texlive-omega-2008-13.18.1
texlive-ppower4-2008-13.18.1
texlive-tex4ht-2008-13.18.1
texlive-tools-2008-13.18.1
texlive-xetex-2008-13.18.1
texlive-xmltex-2008-13.18.1

- openSUSE 11.1 (i586 ppc x86_64):

texlive-bin-2007-219.7.1

- openSUSE 11.1 (noarch src):

texlive-2007-219.7.1

- openSUSE 11.1 (noarch):

texlive-arab-2007-219.7.1
texlive-cjk-2007-219.7.1
texlive-context-2007-219.7.1
texlive-devel-2007-219.7.1
texlive-doc-2007-219.7.1
texlive-dvilj-2007-219.7.1
texlive-jadetex-2007-219.7.1
texlive-latex-2007-219.7.1
texlive-latex-doc-2007-219.7.1
texlive-metapost-2007-219.7.1
texlive-musictex-2007-219.7.1
texlive-nfs-2007-219.7.1
texlive-omega-2007-219.7.1
texlive-ppower4-2007-219.7.1
texlive-tex4ht-2007-219.7.1
texlive-tools-2007-219.7.1
texlive-xetex-2007-219.7.1
texlive-xmltex-2007-219.7.1

- openSUSE 11.0 (i586 ppc x86_64):

texlive-bin-2007-176.4

- openSUSE 11.0 (noarch src):

texlive-2007-177.4

- openSUSE 11.0 (noarch):

texlive-arab-2007-177.4
texlive-cjk-2007-177.4
texlive-context-2007-177.4
texlive-devel-2007-177.4
texlive-doc-2007-177.4
texlive-dvilj-2007-177.4
texlive-jadetex-2007-177.4
texlive-latex-2007-177.4
texlive-latex-doc-2007-177.4
texlive-metapost-2007-177.4
texlive-musictex-2007-177.4
texlive-nfs-2007-177.4
texlive-omega-2007-177.4
texlive-ppower4-2007-177.4
texlive-tex4ht-2007-177.4
texlive-tools-2007-177.4
texlive-xetex-2007-177.4
texlive-xmltex-2007-177.4


References:

http://support.novell.com/security/cve/CVE-2010-0739.html
http://support.novell.com/security/cve/CVE-2010-0827.html
http://support.novell.com/security/cve/CVE-2010-0829.html
http://support.novell.com/security/cve/CVE-2010-1440.html
https://bugzilla.novell.com/587794


< Previous Next >
This Thread
  • No further messages