tetex-lib Packages Update for Debian
Posted on: 12/12/2002 12:14 PM

A new security update for Debian GNU/Linux has been released

[DSA 207-1] New tetex-lib packages fix arbitrary command execution
The SuSE security team discovered a vulnerability in kpathsea library (libkpathsea) which is used by xdvi and dvips. Both programs call the system() function insecurely, which allows a remote attacker to execute arbitrary commands via cleverly crafted DVI files.


Read more





Printed from Linux Compatible (http://www.linuxcompatible.org/news/story/tetex_lib_packages_update_for_debian.html)