CVE-2009-2459

NameCVE-2009-2459
DescriptionMultiple unspecified vulnerabilities in mimeTeX, when downloaded before 20090713, have unknown impact and attack vectors related to the (1) \environ, (2) \input, and (3) \counter TeX directives.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub advisories/code/issues, web search, more)
ReferencesDSA-1917-1
Debian Bugs537254

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
mimetex (PTS)buster1.76-1fixed
bookworm, sid, bullseye1.76-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
mimetexsourceetch1.50-1+etch1DSA-1917-1
mimetexsourcelenny1.50-1+lenny1DSA-1917-1
mimetexsource(unstable)1.50-1.1medium537254

Notes

set impact to medium as this is used in several web applications for conversions
Search for package or bug name: Reporting problems