Search CVE reports


Toggle filters

1 – 5 of 5 results


CVE-2020-8017

Medium priority
Not affected

A Race Condition Enabling Link Following vulnerability in the cron job shipped with texlive-filesystem of SUSE Linux Enterprise Module for Desktop Applications 15-SP1, SUSE Linux Enterprise Software Development Kit 12-SP4, SUSE...

1 affected package

texlive-base

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
texlive-base Not affected
Show less packages

CVE-2020-8016

Medium priority
Not affected

A Race Condition Enabling Link Following vulnerability in the packaging of texlive-filesystem of SUSE Linux Enterprise Module for Desktop Applications 15-SP1, SUSE Linux Enterprise Software Development Kit 12-SP4, SUSE...

1 affected package

texlive-base

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
texlive-base Not affected
Show less packages

CVE-2017-17513

Negligible priority
Vulnerable

TeX Live through 20170524 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, related to...

3 affected packages

context, texlive-base, texlive-bin

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
context Needs evaluation Needs evaluation Needs evaluation Needs evaluation
texlive-base Vulnerable Vulnerable Vulnerable Vulnerable
texlive-bin Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2015-0296

Low priority
Not affected

The pre-install script in texlive 3.1.20140525_r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226_r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory.

1 affected package

texlive-base

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
texlive-base
Show less packages

CVE-2016-10243

Medium priority

Some fixes available 2 of 6

TeX Live allows remote attackers to execute arbitrary commands by leveraging inclusion of mpost in shell_escape_commands in the texmf.cnf config file.

2 affected packages

texlive-base, texlive-bin

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
texlive-base
texlive-bin
Show less packages