During a source code audit, Chris Evans discovered a number of integer overflow bugs that affect libtiff. teTeX contains an internal copy of libtiff. An attacker who has the ability to trick a user into opening a malicious TIFF file could cause the application linked to libtiff to crash or possibly execute arbitrary code. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CAN-2004-0886 and CAN-2004-0804 to these issues. Additionally, a number of buffer overflow bugs that affect libtiff have been found. teTeX contains an internal copy of libtiff. An attacker who has the ability to trick a user into opening a malicious TIFF file could cause the application linked to libtiff to crash or possibly execute arbitrary code. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0803 to this issue. These issues also affect FC3. The ideal fix for these issues will be to have teTeX use the system libtiff rather than it's internal version.
Hello Josh, we have teTeX-2.0.2 since FC1. This version of teTeX doesn't contain libtiff at all, so FC1 and later are not affected by this security issue, libtiff is only present in teTeX-1.0.x, which is present in RHEL2.1 and RHEL3. Jindrich