[Secure-testing-team] Bug#805398: latex2rtf: CVE-2015-8106: format string vulnerability
Salvatore Bonaccorso
carnil at debian.org
Tue Nov 17 18:03:20 UTC 2015
Source: latex2rtf
Version: 2.3.8-1
Severity: normal
Tags: security upstream
Hi,
the following vulnerability was published for latex2rtf.
CVE-2015-8106[0]:
format string vulnerability
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2015-8106
[1] https://bugzilla.redhat.com/show_bug.cgi?id=1282492
For jessie latex2rtf is already compiled with hardening flags,
mitigtating the issue. But could you fixe the issue as well via a
stable proposed-update?
Regards,
Salvatore
More information about the Secure-testing-team
mailing list