Accepted:
OK: tetex-bin_3.0.orig.tar.gz
OK: tetex-bin_3.0-17ubuntu2.1.diff.gz
OK: tetex-bin_3.0-17ubuntu2.1.dsc
-> Component: main Section: tex
OK: libkpathsea-dev_3.0-17ubuntu2.1_amd64.deb
OK: libkpathsea4_3.0-17ubuntu2.1_amd64.deb
OK: tetex-bin_3.0-17ubuntu2.1_amd64.deb
OK: libkpathsea-dev_3.0-17ubuntu2.1_i386.deb
OK: libkpathsea4_3.0-17ubuntu2.1_i386.deb
OK: tetex-bin_3.0-17ubuntu2.1_i386.deb
OK: libkpathsea-dev_3.0-17ubuntu2.1_powerpc.deb
OK: libkpathsea4_3.0-17ubuntu2.1_powerpc.deb
OK: tetex-bin_3.0-17ubuntu2.1_powerpc.deb
OK: libkpathsea-dev_3.0-17ubuntu2.1_sparc.deb
OK: libkpathsea4_3.0-17ubuntu2.1_sparc.deb
OK: tetex-bin_3.0-17ubuntu2.1_sparc.deb
OK: tetex-bin_3.0-17ubuntu2.1_amd64_translations.tar.gz
OK: tetex-bin_3.0-17ubuntu2.1_i386_translations.tar.gz
OK: tetex-bin_3.0-17ubuntu2.1_powerpc_translations.tar.gz
OK: tetex-bin_3.0-17ubuntu2.1_sparc_translations.tar.gz
Format: 1.7
Date: Tue, 4 Dec 2007 14:05:54 -0500
Source: tetex-bin
Binary: libkpathsea-dev libkpathsea4 tetex-bin
Architecture: amd64_translations amd64 i386_translations i386
powerpc_translations powerpc source sparc_translations sparc
Version: 3.0-17ubuntu2.1
Distribution: edgy-security
Urgency: low
Maintainer: Jamie Strandboge <[EMAIL PROTECTED]>
Changed-By: Jamie Strandboge <[EMAIL PROTECTED]>
Description:
libkpathsea-dev - path search library for teTeX (devel part)
libkpathsea4 - path search library for teTeX (runtime part)
tetex-bin - The teTeX binary files
Changes:
tetex-bin (3.0-17ubuntu2.1) edgy-security; urgency=low
.
* SECURITY UPDATE: improper bounds on static buffer results in stack-based
buffer overflow
* debian/patches/SECURITY_CVE-2007-5935.patch: make sure tmpbuf is allocated
enough memory in texk/dvipsk/hps.c
* SECURITY UPDATE: temporary file race condition in dviljk due to use of
tmpnam()
* SECURITY UPDATE: various buffer overflows in dviljk due to not checking
memory boundaries
* debian/patches/SECURITY_CVE-2007-5936+5937.patch: use mkdtemp() if
available in dvi2xx.c. Replace calls to strcpy() and do proper bounds
checking in dvi2xx.*.
* References
CVE-2007-5935
CVE-2007-5936
CVE-2007-5937
Files:
e973cb6b2a80d4288e3c98c3731e5c72 3993822 tex optional
tetex-bin_3.0-17ubuntu2.1_amd64.deb
216d7441389fc81c04a3a32b3aca7382 82082 libs optional
libkpathsea4_3.0-17ubuntu2.1_amd64.deb
195cd45ef787676c67478f0c9123c4fb 76670 libdevel optional
libkpathsea-dev_3.0-17ubuntu2.1_amd64.deb
ab886042a663da4253db6a677b8dc971 478519 raw-translations -
tetex-bin_3.0-17ubuntu2.1_amd64_translations.tar.gz
ea3fa09fcd8a12f8b62292c61e8aa8a1 3494526 tex optional
tetex-bin_3.0-17ubuntu2.1_i386.deb
d2c47945e852a15c5ba069e32dacee76 79544 libs optional
libkpathsea4_3.0-17ubuntu2.1_i386.deb
ddac9890683113ab4b30eb418d6e7710 69712 libdevel optional
libkpathsea-dev_3.0-17ubuntu2.1_i386.deb
25f7b80128c8d3e0801746cf0d3fe793 478556 raw-translations -
tetex-bin_3.0-17ubuntu2.1_i386_translations.tar.gz
94193a6d53b68c763663fa3d158c1091 4007152 tex optional
tetex-bin_3.0-17ubuntu2.1_powerpc.deb
bf5ffbda8b4b67483987c239615e915e 84116 libs optional
libkpathsea4_3.0-17ubuntu2.1_powerpc.deb
f499e40bb3376265be7e71c27cf4e30c 79316 libdevel optional
libkpathsea-dev_3.0-17ubuntu2.1_powerpc.deb
ffaf47f9ee1575938e367e43319e4f1c 478531 raw-translations -
tetex-bin_3.0-17ubuntu2.1_powerpc_translations.tar.gz
196ac952be9eeb717881c0cce6317515 1060 tex optional
tetex-bin_3.0-17ubuntu2.1.dsc
fd0668b0eecf41d4bf853b68a8eccab5 157517 tex optional
tetex-bin_3.0-17ubuntu2.1.diff.gz
3b8e579f76d06105a2173364bc1ea1d7 3800582 tex optional
tetex-bin_3.0-17ubuntu2.1_sparc.deb
221e0ded51d0bb8532d5c06b51d14454 82372 libs optional
libkpathsea4_3.0-17ubuntu2.1_sparc.deb
5761f3dbf0f8ca9b18753c48c82bd691 74786 libdevel optional
libkpathsea-dev_3.0-17ubuntu2.1_sparc.deb
d69c7d76cf5a81161f057d9830bb668d 478547 raw-translations -
tetex-bin_3.0-17ubuntu2.1_sparc_translations.tar.gz
--
edgy-changes mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/edgy-changes
