[gentoo-announce] [ GLSA 200603-02 ] teTeX, pTeX, CSTeX: Multiple overflows in included XPdf code - gentoo-announce

From:	Thierry Carrez <koon@g.o>
To:	gentoo-announce@l.g.o
Cc:	bugtraq@×××××××××××××.com, full-disclosure@××××××××××××××.uk, security-alerts@×××××××××××××.com
Subject:	[gentoo-announce] [ GLSA 200603-02 ] teTeX, pTeX, CSTeX: Multiple overflows in included XPdf code
Date:	Sat, 04 Mar 2006 16:48:32
Message-Id:	`4409C122.4090103@gentoo.org`

1

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

2

Gentoo Linux Security Advisory                           GLSA 200603-02

3

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

4

                                            http://security.gentoo.org/

5

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

6

7

  Severity: Normal

8

     Title: teTeX, pTeX, CSTeX: Multiple overflows in included XPdf

9

            code

10

      Date: March 04, 2006

11

      Bugs: #115775

12

        ID: 200603-02

13

14

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

15

16

Synopsis

17

========

18

19

CSTeTeX, pTeX, and teTeX include vulnerable XPdf code to handle PDF

20

files, making them vulnerable to the execution of arbitrary code.

21

22

Background

23

==========

24

25

teTex is a complete TeX distribution. It is used for creating and

26

manipulating LaTeX documents. CSTeX is a TeX distribution with Czech

27

and Slovak support. pTeX is and ASCII publishing TeX distribution.

28

29

Affected packages

30

=================

31

32

    -------------------------------------------------------------------

33

     Package           /  Vulnerable  /                     Unaffected

34

    -------------------------------------------------------------------

35

  1  app-text/tetex       < 2.0.2-r8                       >= 2.0.2-r8

36

  2  app-text/cstetex     < 2.0.2-r2                       >= 2.0.2-r2

37

  3  app-text/ptex        < 3.1.5-r1                       >= 3.1.5-r1

38

    -------------------------------------------------------------------

39

     3 affected packages on all of their supported architectures.

40

    -------------------------------------------------------------------

41

42

Description

43

===========

44

45

CSTeX, teTex, and pTeX include XPdf code to handle PDF files. This XPdf

46

code is vulnerable to several heap overflows (GLSA 200512-08) as well

47

as several buffer and integer overflows discovered by Chris Evans

48

(CESA-2005-003).

49

50

Impact

51

======

52

53

An attacker could entice a user to open a specially crafted PDF file

54

with teTeX, pTeX or CSTeX, potentially resulting in the execution of

55

arbitrary code with the rights of the user running the affected

56

application.

57

58

Workaround

59

==========

60

61

There is no known workaround at this time.

62

63

Resolution

64

==========

65

66

All teTex users should upgrade to the latest version:

67

68

    # emerge --sync

69

    # emerge --ask --oneshot --verbose ">=app-text/tetex-2.0.2-r8"

70

71

All CSTeX users should upgrade to the latest version:

72

73

    # emerge --sync

74

    # emerge --ask --oneshot --verbose ">=app-text/cstetex-2.0.2-r2"

75

76

All pTeX users should upgrade to the latest version:

77

78

    # emerge --sync

79

    # emerge --ask --oneshot --verbose ">=app-text/ptex-3.1.5-r1"

80

81

References

82

==========

83

84

  [ 1 ] CVE-2005-3193

85

        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-3193

86

  [ 2 ] GLSA 200512-08

87

        http://www.gentoo.org/security/en/glsa/glsa-200512-08.xml

88

  [ 3 ] CESA-2005-003

89

        http://scary.beasts.org/security/CESA-2005-003.txt

90

91

Availability

92

============

93

94

This GLSA and any updates to it are available for viewing at

95

the Gentoo Security Website:

96

97

  http://security.gentoo.org/glsa/glsa-200603-02.xml

98

99

Concerns?

100

=========

101

102

Security is a primary focus of Gentoo Linux and ensuring the

103

confidentiality and security of our users machines is of utmost

104

importance to us. Any security concerns should be addressed to

105

security@g.o or alternatively, you may file a bug at

106

http://bugs.gentoo.org.

107

108

License

109

=======

110

111

Copyright 2006 Gentoo Foundation, Inc; referenced text

112

belongs to its owner(s).

113

114

The contents of this document are licensed under the

115

Creative Commons - Attribution / Share Alike license.

116

117

http://creativecommons.org/licenses/by-sa/2.0

Gentoo Archives: gentoo-announce

Attachments

1	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2	Gentoo Linux Security Advisory GLSA 200603-02
3	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
4	http://security.gentoo.org/
5	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
6
7	Severity: Normal
8	Title: teTeX, pTeX, CSTeX: Multiple overflows in included XPdf
9	code
10	Date: March 04, 2006
11	Bugs: #115775
12	ID: 200603-02
13
14	- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
15
16	Synopsis
17	========
18
19	CSTeTeX, pTeX, and teTeX include vulnerable XPdf code to handle PDF
20	files, making them vulnerable to the execution of arbitrary code.
21
22	Background
23	==========
24
25	teTex is a complete TeX distribution. It is used for creating and
26	manipulating LaTeX documents. CSTeX is a TeX distribution with Czech
27	and Slovak support. pTeX is and ASCII publishing TeX distribution.
28
29	Affected packages
30	=================
31
32	-------------------------------------------------------------------
33	Package / Vulnerable / Unaffected
34	-------------------------------------------------------------------
35	1 app-text/tetex < 2.0.2-r8 >= 2.0.2-r8
36	2 app-text/cstetex < 2.0.2-r2 >= 2.0.2-r2
37	3 app-text/ptex < 3.1.5-r1 >= 3.1.5-r1
38	-------------------------------------------------------------------
39	3 affected packages on all of their supported architectures.
40	-------------------------------------------------------------------
41
42	Description
43	===========
44
45	CSTeX, teTex, and pTeX include XPdf code to handle PDF files. This XPdf
46	code is vulnerable to several heap overflows (GLSA 200512-08) as well
47	as several buffer and integer overflows discovered by Chris Evans
48	(CESA-2005-003).
49
50	Impact
51	======
52
53	An attacker could entice a user to open a specially crafted PDF file
54	with teTeX, pTeX or CSTeX, potentially resulting in the execution of
55	arbitrary code with the rights of the user running the affected
56	application.
57
58	Workaround
59	==========
60
61	There is no known workaround at this time.
62
63	Resolution
64	==========
65
66	All teTex users should upgrade to the latest version:
67
68	# emerge --sync
69	# emerge --ask --oneshot --verbose ">=app-text/tetex-2.0.2-r8"
70
71	All CSTeX users should upgrade to the latest version:
72
73	# emerge --sync
74	# emerge --ask --oneshot --verbose ">=app-text/cstetex-2.0.2-r2"
75
76	All pTeX users should upgrade to the latest version:
77
78	# emerge --sync
79	# emerge --ask --oneshot --verbose ">=app-text/ptex-3.1.5-r1"
80
81	References
82	==========
83
84	[ 1 ] CVE-2005-3193
85	http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-3193
86	[ 2 ] GLSA 200512-08
87	http://www.gentoo.org/security/en/glsa/glsa-200512-08.xml
88	[ 3 ] CESA-2005-003
89	http://scary.beasts.org/security/CESA-2005-003.txt
90
91	Availability
92	============
93
94	This GLSA and any updates to it are available for viewing at
95	the Gentoo Security Website:
96
97	http://security.gentoo.org/glsa/glsa-200603-02.xml
98
99	Concerns?
100	=========
101
102	Security is a primary focus of Gentoo Linux and ensuring the
103	confidentiality and security of our users machines is of utmost
104	importance to us. Any security concerns should be addressed to
105	security@g.o or alternatively, you may file a bug at
106	http://bugs.gentoo.org.
107
108	License
109	=======
110
111	Copyright 2006 Gentoo Foundation, Inc; referenced text
112	belongs to its owner(s).
113
114	The contents of this document are licensed under the
115	Creative Commons - Attribution / Share Alike license.
116
117	http://creativecommons.org/licenses/by-sa/2.0