Lucene search
K

7 matches found

Debian
Debian
added 2024/10/30 8:56 a.m.16 views

[SECURITY] [DLA 3941-1] texlive-bin security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3941-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès October 29, 2024 https://wiki.debian.org/LTS -...

8.1CVSS7.3AI score0.00902EPSS
Exploits1
Ubuntu
Ubuntu
added 2024/03/14 11:45 a.m.60 views

USN-6695-1: TeX Live vulnerabilities

It was discovered that TeX Live incorrectly handled certain memory operations in the embedded axodraw2 tool. An attacker could possibly use this issue to cause TeX Live to crash, resulting in a denial of service. This issue only affected Ubuntu 20.04 LTS. CVE-2019-18604 It was discovered that TeX...

9.8CVSS7.5AI score0.01928EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/05/17 1:47 a.m.3 views

SUSE CVE-2023-32668

LuaTeX before 1.17.0 allows a document compiled with the default settings to make arbitrary network requests. This occurs because full access to the socket library is permitted by default, as stated in the documentation. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5...

5.5CVSS7AI score0.0037EPSS
Exploits1References2
Circl
Circl
added 2023/05/11 12:15 p.m.8 views

CVE-2023-32668

creationtimestamp| type| source ---|---|--- 2023-05-11 12:15:06+00:00| seen| https://t.me/cibsecurity/63859...

5.5CVSS5.4AI score0.0037EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2023/05/11 12:0 a.m.36 views

CVE-2023-32668

LuaTeX before 1.17.0 allows a document compiled with the default settings to make arbitrary network requests. This occurs because full access to the socket library is permitted by default, as stated in the documentation. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5...

5.5CVSS6.2AI score0.0037EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2023/05/11 12:0 a.m.9 views

CVE-2023-32668

LuaTeX before 1.17.0 allows a document compiled with the default settings to make arbitrary network requests. This occurs because full access to the socket library is permitted by default, as stated in the documentation. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5...

5.8AI score0.0037EPSS
Exploits1References4
CVE
CVE
added 2023/05/11 12:0 a.m.80 views

CVE-2023-32668

The CVE-2023-32668 issue affects LuaTeX and TeX Live components: LuaTeX prior to 1.17.0 (with default socket library access) allows a document to initiate arbitrary network requests, with TeX Live before 2023 r66984 and MiKTeX before 23.5 also affected. Underlying cause is default full access to ...

5.5CVSS5.7AI score0.0037EPSS
Exploits1References5Affected Software3
Rows per page
Query Builder