Bug#409709: CVE-2007-0650 tetex-bin: Buffer overflows in teTeX's makeindex

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#409709: CVE-2007-0650 tetex-bin: Buffer overflows in teTeX's makeindex
From: Alex de Oliveira Silva <enerv@host.sk>
Date: Sun, 04 Feb 2007 18:35:23 -0300
Message-id: <[🔎] 20070204213523.12277.57850.reportbug@slut.slut.br>
Reply-to: Alex de Oliveira Silva <enerv@host.sk>, 409709@bugs.debian.org

Package: tetex-bin
Version: 3.0-29
Severity: important
Tags: security

Hi.
Discovered one Buffer overflow in the open_sty function in mkind.c for
makeindex 2.14 might allow user-assisted remote attackers to overwrite
files and possibly execute arbitrary code via a long filename.

Referente:
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=225491
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-0650

Note:
Please mention the CVE id in the changelog.


Thanks in advanced.


regards,
--
   .''`.
  : :' :    Alex de Oliveira Silva | enerv
  `. `'     www.enerv.net
    `-

Reply to:

Prev by Date: Bug#409517: dvipdfm segfault related to /etc/localtime
Next by Date: Processed: CVE-2007-0650 tetex-bin: Buffer overflows in teTeX's makeindex
Previous by thread: Re: unable to install texmacs under texlive
Next by thread: Bug#409709: CVE-2007-0650 tetex-bin: Buffer overflows in teTeX's makeindex
Index(es):
- Date
- Thread