Opened 2 years ago

Closed 2 years ago

#57147 closed defect (fixed)

texlive-bin requires an update

Reported by: pmetzger (Perry E. Metzger) Owned by: drkp (Dan Ports)
Priority: Normal Milestone:
Component: ports Version:
Keywords: security Cc:
Port: texlive-bin

Description

Debian just updated texlive-bin, apparently there's a security hole that allows remote code execution if a custom crafted font file is made available. There's no CVE yet. We should probably also update.

Change History (2)

comment:1 Changed 2 years ago by l2dy (Zero King)

Keywords: security added

comment:2 Changed 2 years ago by l2dy (Zero King)

Resolution: fixed
Status: assignedclosed

In 2902507e8f5c4f8136b05c22ad7d4fa53d7670bc/macports-ports (master):

texlive-bin: Fix DSA-4299-1

Fixes: #57147

Note: See TracTickets for help on using tickets.