SUSE-SU-2018:3033-1
- Source
- https://www.suse.com/support/update/announcement/2018/suse-su-20183033-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2018:3033-1.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/SUSE-SU-2018:3033-1
- Related
- Published
- 2018-10-05T13:22:30Z
- Modified
- 2018-10-05T13:22:30Z
- Summary
- Security update for texlive
- Details
-
This update for texlive fixes the following issue:
- CVE-2018-17407: Prevent buffer overflow when handling of Type 1 fonts allowed arbitrary code execution when a malicious font was loaded by one of the vulnerable tools: pdflatex, pdftex, dvips, or luatex (bsc#1109673)
- References
Affected packages
SUSE:Linux Enterprise Desktop 12 SP3 / texlive
Package
- Name
- texlive
- Purl
- pkg:rpm/suse/texlive&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3
SUSE:Linux Enterprise Software Development Kit 12 SP3 / texlive
Package
- Name
- texlive
- Purl
- pkg:rpm/suse/texlive&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2013.20130620-22.3.1
Ecosystem specific
{
"binaries": [
{
"texlive-cweb-bin": "2013.20130620.svn30088-22.3.1",
"texlive-checkcites-bin": "2013.20130620.svn25623-22.3.1",
"texlive-dvisvgm-bin": "2013.20130620.svn30613-22.3.1",
"texlive-gsftopk-bin": "2013.20130620.svn30088-22.3.1",
"texlive-bibtex-bin": "2013.20130620.svn30088-22.3.1",
"texlive-tex4ht-bin": "2013.20130620.svn30088-22.3.1",
"texlive": "2013.20130620-22.3.1",
"texlive-splitindex-bin": "2013.20130620.svn29688-22.3.1",
"texlive-dviljk-bin": "2013.20130620.svn30088-22.3.1",
"texlive-mfware-bin": "2013.20130620.svn30088-22.3.1",
"texlive-mptopdf-bin": "2013.20130620.svn18674-22.3.1",
"texlive-tetex-bin": "2013.20130620.svn29741-22.3.1",
"texlive-lua2dox-bin": "2013.20130620.svn29053-22.3.1",
"texlive-xmltex-bin": "2013.20130620.svn3006-22.3.1",
"texlive-xdvi-bin": "2013.20130620.svn30088-22.3.1",
"texlive-makeindex-bin": "2013.20130620.svn30088-22.3.1",
"texlive-dvipng-bin": "2013.20130620.svn30845-22.3.1",
"texlive-metafont-bin": "2013.20130620.svn30088-22.3.1",
"texlive-pdftex-bin": "2013.20130620.svn30845-22.3.1",
"texlive-tex-bin": "2013.20130620.svn30088-22.3.1",
"texlive-texconfig-bin": "2013.20130620.svn29741-22.3.1",
"texlive-web-bin": "2013.20130620.svn30088-22.3.1",
"texlive-context-bin": "2013.20130620.svn29741-22.3.1",
"texlive-luaotfload-bin": "2013.20130620.svn30313-22.3.1",
"texlive-lacheck-bin": "2013.20130620.svn30088-22.3.1",
"texlive-latex-bin-bin": "2013.20130620.svn14050-22.3.1",
"texlive-seetexk-bin": "2013.20130620.svn30088-22.3.1",
"texlive-dvips-bin": "2013.20130620.svn30088-22.3.1",
"texlive-xetex-bin": "2013.20130620.svn30845-22.3.1",
"libptexenc1": "1.3.2dev-22.3.1",
"texlive-dvipdfmx-bin": "2013.20130620.svn30845-22.3.1",
"texlive-kpathsea-devel": "6.2.0dev-22.3.1",
"texlive-kpathsea-bin": "2013.20130620.svn30088-22.3.1",
"texlive-luatex-bin": "2013.20130620.svn30845-22.3.1",
"texlive-bin-devel": "2013.20130620-22.3.1",
"texlive-thumbpdf-bin": "2013.20130620.svn6898-22.3.1",
"texlive-jadetex-bin": "2013.20130620.svn3006-22.3.1",
"texlive-ptexenc-devel": "1.3.2dev-22.3.1",
"texlive-dviasm-bin": "2013.20130620.svn8329-22.3.1",
"texlive-metapost-bin": "2013.20130620.svn30845-22.3.1",
"texlive-vlna-bin": "2013.20130620.svn30088-22.3.1",
"texlive-pstools-bin": "2013.20130620.svn30088-22.3.1",
"texlive-dvidvi-bin": "2013.20130620.svn30088-22.3.1"
}
]
}
SUSE:Linux Enterprise Server 12 SP3 / texlive
Package
- Name
- texlive
- Purl
- pkg:rpm/suse/texlive&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3