2 matches found
CVE-2023-46049
CVE-2023-46049 describes a NULL pointer dereference in LLVM 15.0.0’s parseOneMetadata() when processing a crafted pdflatex.fmt (or possibly a crafted .o) fed to llvm-lto. The connected Nessus/OpenVAS advisories (TencentOS/Tencent Linux, EulerOS) explicitly cite this description block and note the...
CVE-2023-46049
LLVM 15.0.0 has a NULL pointer dereference in the parseOneMetadata function via a crafted pdflatex.fmt file or perhaps a crafted .o file to llvm-lto. NOTE: this is disputed because the relationship between pdflatex.fmt and any LLVM language front end is not explained, and because a crash of the...