[SECURITY] Fedora Core 6 Update: tetex-3.0-36.fc6

Jindrich Novy jnovy at redhat.com
Wed Nov 21 22:54:16 UTC 2007 

---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2007-750
2007-11-21
---------------------------------------------------------------------

Product     : Fedora Core 6
Name        : tetex
Version     : 3.0
Release     : 36.fc6
Summary     : The TeX text formatting system.
Description :
TeTeX is an implementation of TeX for Linux or UNIX systems. TeX takes
a text file and a set of formatting commands as input and creates a
typesetter-independent .dvi (DeVice Independent) file as output.
Usually, TeX is used in conjunction with a higher level formatting
package like LaTeX or PlainTeX, since TeX by itself is not very
user-friendly. The output format needn't to be DVI, but also PDF,
when using pdflatex or similar tools.

Install tetex if you want to use the TeX text formatting system. Consider
to install tetex-latex (a higher level formatting package which provides
an easier-to-use interface for TeX). Unless you are an expert at using TeX,
you should also install the tetex-doc package, which includes the
documentation for TeX.

---------------------------------------------------------------------
Update Information:

- fix dvips -z buffer overflow with long href (#368591)
- fix insecure usage of temporary file in dviljk (#368611,
#368641)
- update License and BuildRoot tags
- fix t1lib flaw CVE-2007-4033 (#352271)
- fix CVE-2007-4352 CVE-2007-5392 CVE-2007-5393, various
xpdf flaws (#345121)
- xdvi won't segfault if DVI file contains character which
  is not present in font (#243630)
- enable compilation with ccache

---------------------------------------------------------------------
* Thu Nov 15 2007 Jindrich Novy <jnovy at redhat.com> 3.0-36
- fix dvips -z buffer overflow with long href (#368591)
- fix insecure usage of temporary file in dviljk (#368611, #368641)
- update License and BuildRoot tags
- fix t1lib flaw CVE-2007-4033 (#352271)
- fix CVE-2007-4352 CVE-2007-5392 CVE-2007-5393, various xpdf flaws (#345121)
- xdvi won't segfault if DVI file contains character which
  is not present in font (#243630)
- enable compilation with ccache

---------------------------------------------------------------------
This update can be downloaded from:
    http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/

add5e237e0760ffbb35cba67af08415b0b53ae47  SRPMS/tetex-3.0-36.fc6.src.rpm
add5e237e0760ffbb35cba67af08415b0b53ae47  noarch/tetex-3.0-36.fc6.src.rpm
6563dc6fb1d4bc8ddfe3ed8d976495551a1f84c9  ppc/tetex-dvips-3.0-36.fc6.ppc.rpm
ff9a24ac0580ee04c1dd4b1da953272dec4568d0  ppc/tetex-doc-3.0-36.fc6.ppc.rpm
ba0bd3d17a692260830058c85294f1099e8333b6  ppc/debug/tetex-debuginfo-3.0-36.fc6.ppc.rpm
dfee8bb0576c7e7cff0bbc54a3c6cd59fff87987  ppc/tetex-xdvi-3.0-36.fc6.ppc.rpm
db6fc5dd875ff55012106ec439abe20be620868b  ppc/tetex-afm-3.0-36.fc6.ppc.rpm
2b79bf9dccfab035db29e73f9fc54710095c966c  ppc/tetex-latex-3.0-36.fc6.ppc.rpm
83e37c88a1de48afed825914e8ac610a8c97bcc3  ppc/tetex-3.0-36.fc6.ppc.rpm
e6e9731c0f2df3d43d7be2a8f2760560d7057db5  ppc/tetex-fonts-3.0-36.fc6.ppc.rpm
6bc20f047dd71248b239daec7bce57166a3caa82  x86_64/tetex-doc-3.0-36.fc6.x86_64.rpm
a79f0236c530eb163b69c68497e7a06c81040f93  x86_64/tetex-dvips-3.0-36.fc6.x86_64.rpm
7b2649135938299038383eaedb0109be46db2aaa  x86_64/tetex-afm-3.0-36.fc6.x86_64.rpm
1288892a74b6a68647282f5e8c97653c02d639cc  x86_64/tetex-fonts-3.0-36.fc6.x86_64.rpm
4d76b39bd2f7c341bfe62640837f7fb42d5e7191  x86_64/tetex-xdvi-3.0-36.fc6.x86_64.rpm
410768ad413ee4ffea4072fc8106666b2a56e29d  x86_64/tetex-latex-3.0-36.fc6.x86_64.rpm
9bedad0d54a276183c1c403675d6a3f5f824957c  x86_64/tetex-3.0-36.fc6.x86_64.rpm
5f8f4dfb3eb76b6e9ecd55e23878087ee6adbebd  x86_64/debug/tetex-debuginfo-3.0-36.fc6.x86_64.rpm
df9cf84f3d6dba75ad7ebd77b587b7266d3ad893  i386/tetex-dvips-3.0-36.fc6.i386.rpm
da1363e3d7a3990b5a4351f431a595a533d16bdd  i386/tetex-3.0-36.fc6.i386.rpm
1f81d522927c1080f570b3f0e13bb00d3b0737d9  i386/tetex-xdvi-3.0-36.fc6.i386.rpm
294b5788f687871f0480195075052112dabe9ab3  i386/debug/tetex-debuginfo-3.0-36.fc6.i386.rpm
a205df3c2d823c41614d66ee48412cf2bee8a8cc  i386/tetex-latex-3.0-36.fc6.i386.rpm
4dec2372801b49a20fe0eee61ab48b1797326fb8  i386/tetex-fonts-3.0-36.fc6.i386.rpm
02ce647fb2a3b4a34018ba0476a06e24f1b05ac2  i386/tetex-doc-3.0-36.fc6.i386.rpm
2fbcbf1123199b9146d528e6b1456e5d4ae40eb8  i386/tetex-afm-3.0-36.fc6.i386.rpm

This update can be installed with the 'yum' update program.  Use 'yum update
package-name' at the command line.  For more information, refer to 'Managing
Software with yum,' available at http://fedora.redhat.com/docs/yum/.
---------------------------------------------------------------------

More information about the package-announce mailing list