PublicDate: 2007-11-13 22:46:00 UTC
Candidate: CVE-2007-5936
References:
 https://ubuntu.com/security/notices/USN-554-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5936
Description:
 dvips in teTeX and TeXlive 2007 and earlier allows local users to obtain
 sensitive information and modify certain data by creating certain temporary
 files before they are processed by dviljk, which can then be read or
 modified in place.
Ubuntu-Description:
Notes:
 jdstrand> fixed with Debian's dviljk-security-fixes
Bugs:
Priority: low
Discovered-by:
Assigned-to: jdstrand
CVSS: 

upstream_tetex-bin: needed
dapper_tetex-bin: released (3.0-13ubuntu6.1)
edgy_tetex-bin: released (3.0-17ubuntu2.1)
feisty_tetex-bin: released (3.0-27ubuntu1.2)
gutsy_tetex-bin: DNE
hardy_tetex-bin: DNE
devel_tetex-bin: DNE

upstream_texlive-bin: needed
dapper_texlive-bin: DNE
edgy_texlive-bin: needed
feisty_texlive-bin: needed (reached end-of-life)
gutsy_texlive-bin: released (2007-12ubuntu3.1)
hardy_texlive-bin: not-affected (2007.dfsg.1-2)
devel_texlive-bin: not-affected (2007.dfsg.1-2)