Issued:: 2006-01-19
Updated:: 2006-01-19

RHSA-2006:0160 - Security Advisory

Overview
Updated Packages

Synopsis

tetex security update

Type/Severity

Security Advisory: Moderate

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated tetex packages that fix several integer overflows are now available.

This update has been rated as having moderate security impact by the Red
Hat Security Response Team.

Description

TeTeX is an implementation of TeX. TeX takes a text file and a set of
formatting commands as input and creates a typesetter-independent .dvi
(DeVice Independent) file as output.

Several flaws were discovered in the teTeX PDF parsing library. An attacker
could construct a carefully crafted PDF file that could cause teTeX to
crash or possibly execute arbitrary code when opened. The Common
Vulnerabilities and Exposures project assigned the names CVE-2005-3191,
CVE-2005-3192, CVE-2005-3193, CVE-2005-3624, CVE-2005-3625, CVE-2005-3626,
CVE-2005-3627 and CVE-2005-3628 to these issues.

Users of teTeX should upgrade to these updated packages, which contain
backported patches and are not vulnerable to these issues.

Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:

http://www.redhat.com/docs/manuals/enterprise/

Affected Products

Red Hat Enterprise Linux Server 4 x86_64
Red Hat Enterprise Linux Server 4 ia64
Red Hat Enterprise Linux Server 4 i386
Red Hat Enterprise Linux Server 3 x86_64
Red Hat Enterprise Linux Server 3 ia64
Red Hat Enterprise Linux Server 3 i386
Red Hat Enterprise Linux Server 2 ia64
Red Hat Enterprise Linux Server 2 i386
Red Hat Enterprise Linux Workstation 4 x86_64
Red Hat Enterprise Linux Workstation 4 ia64
Red Hat Enterprise Linux Workstation 4 i386
Red Hat Enterprise Linux Workstation 3 x86_64
Red Hat Enterprise Linux Workstation 3 ia64
Red Hat Enterprise Linux Workstation 3 i386
Red Hat Enterprise Linux Workstation 2 ia64
Red Hat Enterprise Linux Workstation 2 i386
Red Hat Enterprise Linux Desktop 4 x86_64
Red Hat Enterprise Linux Desktop 4 i386
Red Hat Enterprise Linux Desktop 3 x86_64
Red Hat Enterprise Linux Desktop 3 i386
Red Hat Enterprise Linux for IBM z Systems 4 s390x
Red Hat Enterprise Linux for IBM z Systems 4 s390
Red Hat Enterprise Linux for IBM z Systems 3 s390x
Red Hat Enterprise Linux for IBM z Systems 3 s390
Red Hat Enterprise Linux for Power, big endian 4 ppc
Red Hat Enterprise Linux for Power, big endian 3 ppc

Fixes

BZ - 175109 - CVE-2005-3193 xpdf issues (CVE-2005-3191 CVE-2005-3192 CVE-2005-3628)
BZ - 177127 - [RHEL4] CVE-2005-3624 Additional xpdf issues (CVE-2005-3625 CVE-2005-3626 CVE-2005-3627)

CVEs

References

(none)

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 4

SRPM
x86_64
tetex-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 3e15123dfbb0288648f67a6f3e43e5d608e6ba3739dd6022ca6f0f099167896a
tetex-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 3e15123dfbb0288648f67a6f3e43e5d608e6ba3739dd6022ca6f0f099167896a
tetex-afm-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 4b6859a69a54f5e87973b765fcc2c8a2cccb1f62f924aae90014a4e4d4a47f5e
tetex-afm-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 4b6859a69a54f5e87973b765fcc2c8a2cccb1f62f924aae90014a4e4d4a47f5e
tetex-doc-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 61c65045cd016216915127b98f7bcf1171ff6b4cfd2b13869ad0c48cb0d4635e
tetex-doc-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 61c65045cd016216915127b98f7bcf1171ff6b4cfd2b13869ad0c48cb0d4635e
tetex-dvips-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 25db6113462e3785a43ced4ba9bfd985a3d00a44556fa6b0865085e5e6f69bb2
tetex-dvips-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 25db6113462e3785a43ced4ba9bfd985a3d00a44556fa6b0865085e5e6f69bb2
tetex-fonts-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 6214a018e1bc445dfe1b4668d32253a18ad3beaa41dbc03647104775dbc91c7d
tetex-fonts-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 6214a018e1bc445dfe1b4668d32253a18ad3beaa41dbc03647104775dbc91c7d
tetex-latex-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 49a8caac436ec34275e8635826b83e9bdde37fcebd64e403c59fb288e937d339
tetex-latex-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 49a8caac436ec34275e8635826b83e9bdde37fcebd64e403c59fb288e937d339
tetex-xdvi-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: adaeb39075f34574916a4baa9eb7c2fbc21e052e13ab7ad2811d8a862587968f
tetex-xdvi-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: adaeb39075f34574916a4baa9eb7c2fbc21e052e13ab7ad2811d8a862587968f
ia64
tetex-2.0.2-22.EL4.7.ia64.rpm	SHA-256: 4bf53495a5be6603e7f503ac16f8f1e611e706806c5783b60c307eceb0463edc
tetex-2.0.2-22.EL4.7.ia64.rpm	SHA-256: 4bf53495a5be6603e7f503ac16f8f1e611e706806c5783b60c307eceb0463edc
tetex-afm-2.0.2-22.EL4.7.ia64.rpm	SHA-256: 625bef7f9a1cd70fff3fe9ad16b56846de7a4a9cfc3663581d0942a9007e6b26
tetex-afm-2.0.2-22.EL4.7.ia64.rpm	SHA-256: 625bef7f9a1cd70fff3fe9ad16b56846de7a4a9cfc3663581d0942a9007e6b26
tetex-doc-2.0.2-22.EL4.7.ia64.rpm	SHA-256: 2690b43478ed866d562d3e27fb5babe88ccb3caf503af72e66a15ecf7022b29e
tetex-doc-2.0.2-22.EL4.7.ia64.rpm	SHA-256: 2690b43478ed866d562d3e27fb5babe88ccb3caf503af72e66a15ecf7022b29e
tetex-dvips-2.0.2-22.EL4.7.ia64.rpm	SHA-256: cbf696a81192415e89d86647912e121471e37f6ae5c277227f34dc5ea296f29f
tetex-dvips-2.0.2-22.EL4.7.ia64.rpm	SHA-256: cbf696a81192415e89d86647912e121471e37f6ae5c277227f34dc5ea296f29f
tetex-fonts-2.0.2-22.EL4.7.ia64.rpm	SHA-256: b53c0bc65d7a131807f81f0aff0b0bd6c850afc9f64022052650a8548c6eed5a
tetex-fonts-2.0.2-22.EL4.7.ia64.rpm	SHA-256: b53c0bc65d7a131807f81f0aff0b0bd6c850afc9f64022052650a8548c6eed5a
tetex-latex-2.0.2-22.EL4.7.ia64.rpm	SHA-256: 02ce4222d7d4b9beb70904753cbb6f2dfaa7899078e299e7f0c9dd3546febf7e
tetex-latex-2.0.2-22.EL4.7.ia64.rpm	SHA-256: 02ce4222d7d4b9beb70904753cbb6f2dfaa7899078e299e7f0c9dd3546febf7e
tetex-xdvi-2.0.2-22.EL4.7.ia64.rpm	SHA-256: 660e1e09f42cb12e26669100bb3610a71f7f71d4b6afe2dc01c1699a2c58bb8c
tetex-xdvi-2.0.2-22.EL4.7.ia64.rpm	SHA-256: 660e1e09f42cb12e26669100bb3610a71f7f71d4b6afe2dc01c1699a2c58bb8c
i386
tetex-2.0.2-22.EL4.7.i386.rpm	SHA-256: d790bec7f8fa92b4ea437c32823a95a1e56af52c707cff2f055a125e2915d976
tetex-2.0.2-22.EL4.7.i386.rpm	SHA-256: d790bec7f8fa92b4ea437c32823a95a1e56af52c707cff2f055a125e2915d976
tetex-afm-2.0.2-22.EL4.7.i386.rpm	SHA-256: 6d3629a3a485949561ec8940a8f91ba2cb95266e8334e386acaceac6b917f9a0
tetex-afm-2.0.2-22.EL4.7.i386.rpm	SHA-256: 6d3629a3a485949561ec8940a8f91ba2cb95266e8334e386acaceac6b917f9a0
tetex-doc-2.0.2-22.EL4.7.i386.rpm	SHA-256: f814dbc473245fd63f30f95e126699e95e8083caf22d5ec00440ce2242529bca
tetex-doc-2.0.2-22.EL4.7.i386.rpm	SHA-256: f814dbc473245fd63f30f95e126699e95e8083caf22d5ec00440ce2242529bca
tetex-dvips-2.0.2-22.EL4.7.i386.rpm	SHA-256: 082ac9266f6385fce39688808ce5db976ba4a550f8a0197eeef88c1d0755a00a
tetex-dvips-2.0.2-22.EL4.7.i386.rpm	SHA-256: 082ac9266f6385fce39688808ce5db976ba4a550f8a0197eeef88c1d0755a00a
tetex-fonts-2.0.2-22.EL4.7.i386.rpm	SHA-256: 2a22a7e550cad8397f08238d8f8dc57c4b3c5af5e7a1d6ac011d85496e9fc6c3
tetex-fonts-2.0.2-22.EL4.7.i386.rpm	SHA-256: 2a22a7e550cad8397f08238d8f8dc57c4b3c5af5e7a1d6ac011d85496e9fc6c3
tetex-latex-2.0.2-22.EL4.7.i386.rpm	SHA-256: 4bee35c212f7a82e46c87ca32c7f7549ad0a8df70f6f61621e61e9868bd57a57
tetex-latex-2.0.2-22.EL4.7.i386.rpm	SHA-256: 4bee35c212f7a82e46c87ca32c7f7549ad0a8df70f6f61621e61e9868bd57a57
tetex-xdvi-2.0.2-22.EL4.7.i386.rpm	SHA-256: 0155869b328c958d4fccb9eec66914fcb9d40738894035a2f53350c3e0c11bc9
tetex-xdvi-2.0.2-22.EL4.7.i386.rpm	SHA-256: 0155869b328c958d4fccb9eec66914fcb9d40738894035a2f53350c3e0c11bc9

Red Hat Enterprise Linux Server 3

SRPM
x86_64
ia64
i386

Red Hat Enterprise Linux Server 2

SRPM
ia64
i386

Red Hat Enterprise Linux Workstation 4

SRPM
x86_64
tetex-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 3e15123dfbb0288648f67a6f3e43e5d608e6ba3739dd6022ca6f0f099167896a
tetex-afm-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 4b6859a69a54f5e87973b765fcc2c8a2cccb1f62f924aae90014a4e4d4a47f5e
tetex-doc-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 61c65045cd016216915127b98f7bcf1171ff6b4cfd2b13869ad0c48cb0d4635e
tetex-dvips-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 25db6113462e3785a43ced4ba9bfd985a3d00a44556fa6b0865085e5e6f69bb2
tetex-fonts-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 6214a018e1bc445dfe1b4668d32253a18ad3beaa41dbc03647104775dbc91c7d
tetex-latex-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 49a8caac436ec34275e8635826b83e9bdde37fcebd64e403c59fb288e937d339
tetex-xdvi-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: adaeb39075f34574916a4baa9eb7c2fbc21e052e13ab7ad2811d8a862587968f
ia64
tetex-2.0.2-22.EL4.7.ia64.rpm	SHA-256: 4bf53495a5be6603e7f503ac16f8f1e611e706806c5783b60c307eceb0463edc
tetex-afm-2.0.2-22.EL4.7.ia64.rpm	SHA-256: 625bef7f9a1cd70fff3fe9ad16b56846de7a4a9cfc3663581d0942a9007e6b26
tetex-doc-2.0.2-22.EL4.7.ia64.rpm	SHA-256: 2690b43478ed866d562d3e27fb5babe88ccb3caf503af72e66a15ecf7022b29e
tetex-dvips-2.0.2-22.EL4.7.ia64.rpm	SHA-256: cbf696a81192415e89d86647912e121471e37f6ae5c277227f34dc5ea296f29f
tetex-fonts-2.0.2-22.EL4.7.ia64.rpm	SHA-256: b53c0bc65d7a131807f81f0aff0b0bd6c850afc9f64022052650a8548c6eed5a
tetex-latex-2.0.2-22.EL4.7.ia64.rpm	SHA-256: 02ce4222d7d4b9beb70904753cbb6f2dfaa7899078e299e7f0c9dd3546febf7e
tetex-xdvi-2.0.2-22.EL4.7.ia64.rpm	SHA-256: 660e1e09f42cb12e26669100bb3610a71f7f71d4b6afe2dc01c1699a2c58bb8c
i386
tetex-2.0.2-22.EL4.7.i386.rpm	SHA-256: d790bec7f8fa92b4ea437c32823a95a1e56af52c707cff2f055a125e2915d976
tetex-afm-2.0.2-22.EL4.7.i386.rpm	SHA-256: 6d3629a3a485949561ec8940a8f91ba2cb95266e8334e386acaceac6b917f9a0
tetex-doc-2.0.2-22.EL4.7.i386.rpm	SHA-256: f814dbc473245fd63f30f95e126699e95e8083caf22d5ec00440ce2242529bca
tetex-dvips-2.0.2-22.EL4.7.i386.rpm	SHA-256: 082ac9266f6385fce39688808ce5db976ba4a550f8a0197eeef88c1d0755a00a
tetex-fonts-2.0.2-22.EL4.7.i386.rpm	SHA-256: 2a22a7e550cad8397f08238d8f8dc57c4b3c5af5e7a1d6ac011d85496e9fc6c3
tetex-latex-2.0.2-22.EL4.7.i386.rpm	SHA-256: 4bee35c212f7a82e46c87ca32c7f7549ad0a8df70f6f61621e61e9868bd57a57
tetex-xdvi-2.0.2-22.EL4.7.i386.rpm	SHA-256: 0155869b328c958d4fccb9eec66914fcb9d40738894035a2f53350c3e0c11bc9

Red Hat Enterprise Linux Workstation 3

SRPM
x86_64
ia64
i386

Red Hat Enterprise Linux Workstation 2

SRPM
ia64
i386

Red Hat Enterprise Linux Desktop 4

SRPM
x86_64
tetex-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 3e15123dfbb0288648f67a6f3e43e5d608e6ba3739dd6022ca6f0f099167896a
tetex-afm-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 4b6859a69a54f5e87973b765fcc2c8a2cccb1f62f924aae90014a4e4d4a47f5e
tetex-doc-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 61c65045cd016216915127b98f7bcf1171ff6b4cfd2b13869ad0c48cb0d4635e
tetex-dvips-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 25db6113462e3785a43ced4ba9bfd985a3d00a44556fa6b0865085e5e6f69bb2
tetex-fonts-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 6214a018e1bc445dfe1b4668d32253a18ad3beaa41dbc03647104775dbc91c7d
tetex-latex-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: 49a8caac436ec34275e8635826b83e9bdde37fcebd64e403c59fb288e937d339
tetex-xdvi-2.0.2-22.EL4.7.x86_64.rpm	SHA-256: adaeb39075f34574916a4baa9eb7c2fbc21e052e13ab7ad2811d8a862587968f
i386
tetex-2.0.2-22.EL4.7.i386.rpm	SHA-256: d790bec7f8fa92b4ea437c32823a95a1e56af52c707cff2f055a125e2915d976
tetex-afm-2.0.2-22.EL4.7.i386.rpm	SHA-256: 6d3629a3a485949561ec8940a8f91ba2cb95266e8334e386acaceac6b917f9a0
tetex-doc-2.0.2-22.EL4.7.i386.rpm	SHA-256: f814dbc473245fd63f30f95e126699e95e8083caf22d5ec00440ce2242529bca
tetex-dvips-2.0.2-22.EL4.7.i386.rpm	SHA-256: 082ac9266f6385fce39688808ce5db976ba4a550f8a0197eeef88c1d0755a00a
tetex-fonts-2.0.2-22.EL4.7.i386.rpm	SHA-256: 2a22a7e550cad8397f08238d8f8dc57c4b3c5af5e7a1d6ac011d85496e9fc6c3
tetex-latex-2.0.2-22.EL4.7.i386.rpm	SHA-256: 4bee35c212f7a82e46c87ca32c7f7549ad0a8df70f6f61621e61e9868bd57a57
tetex-xdvi-2.0.2-22.EL4.7.i386.rpm	SHA-256: 0155869b328c958d4fccb9eec66914fcb9d40738894035a2f53350c3e0c11bc9

Red Hat Enterprise Linux Desktop 3

SRPM
x86_64
i386

Red Hat Enterprise Linux for IBM z Systems 4

SRPM
s390x
tetex-2.0.2-22.EL4.7.s390x.rpm	SHA-256: 08e12bc53fbeb9f91b6bc5b8836933c2bbe266e654e663ee455df9b414d7e949
tetex-afm-2.0.2-22.EL4.7.s390x.rpm	SHA-256: 811d67571803e992d79865fb0aefffa30d36d32762bf7ff65b8d26e350a269b1
tetex-doc-2.0.2-22.EL4.7.s390x.rpm	SHA-256: b415f26736d1a0ee733de3650881664a0bf39a45bcf38bf3cb3fb7b44d065e4d
tetex-dvips-2.0.2-22.EL4.7.s390x.rpm	SHA-256: cc0591f68e7309a18aa7309d5f47eaf17e653de2f62255ca1b6d0bd66145fec4
tetex-fonts-2.0.2-22.EL4.7.s390x.rpm	SHA-256: 20b6c93b4e5f2a560a56670ce2ec35da4a54a6b6ac0a8c583bcee74b16d7c00a
tetex-latex-2.0.2-22.EL4.7.s390x.rpm	SHA-256: 3590cc05f06bef1d332e9b1d8e585d1350dbbf6a31f5c969eaffb7d755bb1b31
tetex-xdvi-2.0.2-22.EL4.7.s390x.rpm	SHA-256: ddcb234a0be12b780ff90023d97cfeb7d7de6d44134531113e203e1f2d8cb35d
s390
tetex-2.0.2-22.EL4.7.s390.rpm	SHA-256: 26ed80eacbd25b9bdc4b3a2fea2a7a99ded7ff2b1f232aa76b2d85ce98851e9f
tetex-afm-2.0.2-22.EL4.7.s390.rpm	SHA-256: 7cd4179ad70fb17f520176abffd83d8a843f0e1ff651f09a9dc9683b7aa817dc
tetex-doc-2.0.2-22.EL4.7.s390.rpm	SHA-256: 041938acbf231488ced29909cfd461ce3c78d3344d2b123f70436f7cd10a8b92
tetex-dvips-2.0.2-22.EL4.7.s390.rpm	SHA-256: a7783c5f6ebd3c10b0580406bd94824a8a0ee4346e5e7c355eb92e393ec46ec8
tetex-fonts-2.0.2-22.EL4.7.s390.rpm	SHA-256: 3efbda7be2929617f55551efebf0e655ccd03de0e8d02575d46c6b66950a8756
tetex-latex-2.0.2-22.EL4.7.s390.rpm	SHA-256: 8d87267db49ef71fafb1184b7b64f5962e603afdb06e82d034cb83d1b5987734
tetex-xdvi-2.0.2-22.EL4.7.s390.rpm	SHA-256: bd575aea3ca0b54ccc579c33c4816deaa32dda68c62d8288e2e24dbcae686a14

Red Hat Enterprise Linux for IBM z Systems 3

SRPM
s390x
s390

Red Hat Enterprise Linux for Power, big endian 4

SRPM
ppc
tetex-2.0.2-22.EL4.7.ppc.rpm	SHA-256: 8744335d2a9203cbfc54372fb49dfc84d984493678ce5acc8605668d3419a62a
tetex-afm-2.0.2-22.EL4.7.ppc.rpm	SHA-256: 4305257e9d88d293425adbde9966677c54350bbbaccb82c0341109c9c92485d0
tetex-doc-2.0.2-22.EL4.7.ppc.rpm	SHA-256: 25bf135738cb0ea567709163c40115e69b102542a77688feb99cca571e0dad19
tetex-dvips-2.0.2-22.EL4.7.ppc.rpm	SHA-256: 4244573e5451d633b8af661cca1ff4910e928c6d63bd7f1d5ccfb2c43aa7326e
tetex-fonts-2.0.2-22.EL4.7.ppc.rpm	SHA-256: ed9494da2fd6a0d6862097c602e288f93c04431d2e3061401088e84b48a55f1e
tetex-latex-2.0.2-22.EL4.7.ppc.rpm	SHA-256: 640bf4daab1b69346bb3290b6699ad16d8c51cedc7ddfebeecbbdbf32912b7cb
tetex-xdvi-2.0.2-22.EL4.7.ppc.rpm	SHA-256: 3028ffdb84186141c473099fd9a7a5aa5976b3dc8134bd1d6da62d8208dc09d7

Red Hat Enterprise Linux for Power, big endian 3

SRPM
ppc

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation