RSS   Vulnerabilities for 'Texlive'   RSS

2017-10-06
 
CVE-2015-0296

 

 
The pre-install script in texlive 3.1.20140525_r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226_r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory.

 
2017-08-25
 
CVE-2015-5701

 

 
mktexlsr revision 36855, and before revision 36626 as packaged in texlive allows local users to write to arbitrary files via a symlink attack. NOTE: this vulnerability exists due to the reversion of a fix of CVE-2015-5700.

 
 
CVE-2015-5700

CWE-59
 

 
mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack.

 

 >>> Vendor: TUG 4 Products
Tetex
Texlive 2007
Tex live
Texlive


Copyright 2024, cxsecurity.com

 

Back to Top