Tetex

tetex

Vendor: Tug • 5 CVEs

CVEs (5)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2010-2642 3Redhat T1libTug 3Evince T1libTetex Apr 29, 2026 Jan 7, 2011 N/A· v4 N/A· v3 7.6 HIGH· v2 Heap-based buffer overflow in the AFM font parser in the dvi-backend component in Evince 2.32 and earlier, teTeX 3.0, t1lib 5.1.2, and possibly other products allows remote attackers to cause a denial of service (applica...Show more Heap-based buffer overflow in the AFM font parser in the dvi-backend component in Evince 2.32 and earlier, teTeX 3.0, t1lib 5.1.2, and possibly other products allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font in conjunction with a DVI file that is processed by the thumbnailer.Show less
CVE-2010-1440 1Tug 2Tetex Tex Live Apr 29, 2026 May 7, 2010 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a special...Show more Multiple integer overflows in dvipsk/dospecial.c in dvips in TeX Live 2009 and earlier, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a special command in a DVI file, related to the (1) predospecial and (2) bbdospecial functions, a different vulnerability than CVE-2010-0739.Show less
CVE-2010-0829 2Jan Ake Larsson Tug 2Dvipng Tetex Apr 29, 2026 May 7, 2010 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Multiple array index errors in set.c in dvipng 1.11 and 1.12, and teTeX, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed DVI file.
CVE-2010-0827 1Tug 2Tetex Tex Live Apr 29, 2026 May 7, 2010 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Integer overflow in dvips in TeX Live 2009 and earlier, and teTeX, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted virtual font (VF) file associat...Show more Integer overflow in dvips in TeX Live 2009 and earlier, and teTeX, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted virtual font (VF) file associated with a DVI file.Show less
CVE-2010-0739 1Tug 2Tetex Tex Live Apr 29, 2026 Apr 16, 2010 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Integer overflow in the predospecial function in dospecial.c in dvips in (1) TeX Live and (2) teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based b...Show more Integer overflow in the predospecial function in dospecial.c in dvips in (1) TeX Live and (2) teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.Show less