Package: texlive-bin Version: 2012.20120628-4 Severity: grave Tags: security
Due to embedding t1lib, but not (at least) pulling the security patches from t1lib package, the texlive-bin suffers from: CVE-2011-0764 CVE-2011-0433 CVE-2011-1552 CVE-2011-1553 CVE-2011-1554 CVE-2010-2642 seems to be fixed in patch-01-buffer-limit Hiding the fact with the lintian-override doesn't help very much (and wheezy still have t1lib). O. -- System Information: Debian Release: 7.0 APT prefers stable APT policy: (500, 'stable'), (300, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
