[ubuntu/lucid-security] texlive-bin_2009-5ubuntu0.1_ia64_translations.tar.gz, texlive-bin_2009-5ubuntu0.1_powerpc_translations.tar.gz, texlive-bin, texlive-bin_2009-5ubuntu0.1_armel_translations.tar.gz, texlive-bin_2009-5ubuntu0.1_sparc_translations.tar.gz (delayed), texlive-bin_2009-5ubuntu0.1_i386_translations.tar.gz, texlive-bin_2009-5ubuntu0.1_amd64_translations.tar.gz 2009-5ubuntu0.1 (Accepted)

Ubuntu Installer archive at ubuntu.com
Thu May 6 14:03:28 BST 2010 

texlive-bin (2009-5ubuntu0.1) lucid-security; urgency=low

  * SECURITY UPDATE: arbitrary code execution via memory corruption
    (LP: #537103)
    - debian/patches/security-CVE-2010-0827.patch: make sure name isn't
      too long in texk/dvipsk/virtualfont.c.
    - CVE-2010-0827
  * SECURITY UPDATE: arbitrary code execution via integer overflow
    - debian/patches/security-CVE-2010-0739,1440.patch: make sure numbytes
      doesn't overflow in texk/dvipsk/dospecial.c.
    - CVE-2010-0739
    - CVE-2010-1440

Date: Mon, 03 May 2010 09:05:31 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/texlive-bin/2009-5ubuntu0.1
-------------- next part --------------
Format: 1.8
Date: Mon, 03 May 2010 09:05:31 -0400
Source: texlive-bin
Binary: texlive-binaries libkpathsea5 libkpathsea-dev
Architecture: source
Version: 2009-5ubuntu0.1
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 libkpathsea-dev - TeX Live: path search library for TeX (development part)
 libkpathsea5 - TeX Live: path search library for TeX (runtime part)
 texlive-binaries - Binaries for TeX Live
Launchpad-Bugs-Fixed: 537103
Changes: 
 texlive-bin (2009-5ubuntu0.1) lucid-security; urgency=low
 .
   * SECURITY UPDATE: arbitrary code execution via memory corruption
     (LP: #537103)
     - debian/patches/security-CVE-2010-0827.patch: make sure name isn't
       too long in texk/dvipsk/virtualfont.c.
     - CVE-2010-0827
   * SECURITY UPDATE: arbitrary code execution via integer overflow
     - debian/patches/security-CVE-2010-0739,1440.patch: make sure numbytes
       doesn't overflow in texk/dvipsk/dospecial.c.
     - CVE-2010-0739
     - CVE-2010-1440
Checksums-Sha1: 
 3ee1e639e90366f99522db3fbdad28674fee225f 1504 texlive-bin_2009-5ubuntu0.1.dsc
 ad26d476ddb6a83225e4170d6efefcd9903914bf 57878 texlive-bin_2009-5ubuntu0.1.diff.gz
Checksums-Sha256: 
 53d00dbea9014bd2146f0584638b2dd9c7a026f9668db6b92c88f820db4ad058 1504 texlive-bin_2009-5ubuntu0.1.dsc
 c3c488e35ed6239a8993b607827dea9ca1aa38a3b6c8bb51c2217c01145790bd 57878 texlive-bin_2009-5ubuntu0.1.diff.gz
Files: 
 15db436e0f5230b811304c9271766a72 1504 tex optional texlive-bin_2009-5ubuntu0.1.dsc
 49fe58e3077e23c178b5582cbbef48b4 57878 tex optional texlive-bin_2009-5ubuntu0.1.diff.gz
Original-Maintainer: Debian TeX Maintainers <debian-tex-maint at lists.debian.org>

More information about the Lucid-changes mailing list