CVE-2007-5935

EPSS 6.3%

texlive-bin - arbitrary code execution

Published: 11/13/2007Modified: 4/28/2026

Description

Stack-based buffer overflow in hpc.c in dvips in teTeX and TeXlive 2007 and earlier allows user-assisted attackers to execute arbitrary code via a DVI file with a long href tag.

Affected packages (2)

Debian/texlive-binfrom 0, < 2007.dfsg.1-1
Debian/texlive-binfrom 0, < 2007-14+lenny1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-5935