20770 2009-07-13 17:03:30 +0400 mimeTeX Multiple Vulnerabilities: CVE-2009-1382, CVE-2009-2459 2009-08-29 08:23:30 +0400 1 1 4 Development Sisyphus mimetex unstable all Linux CLOSED FIXED http://secunia.com/advisories/35752 security P3 blocker --- 1 crux rider rider svyt22 qa-sisyphus oldest_to_newest 94629 0 crux 2009-07-13 17:03:30 +0400 Chris Evans has reported some vulnerabilities in mimeTeX, which can be exploited by malicious people to disclose sensitive information or compromise a vulnerable system. 1) Multiple boundary errors when processing TeX input can be exploited to cause buffer overflows via e.g. overly long strings passed in "\picture", \circle", or "\input" expressions. 2) Multiple errors when handling the "\environ", "\input", and "\counter" directives can be exploited to disclose sensitive information. Problem fixed in version 1.71 97607 1 svyt22 2009-08-29 08:23:30 +0400 в последней выложенной версии исправлены обнаруженные уязвимости