7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.024 Low
EPSS
Percentile
89.9%
Buffer overflow in the intT1_EnvGetCompletePath function in
lib/t1lib/t1env.c in t1lib 5.1.1 allows context-dependent attackers to
execute arbitrary code via a long FileName parameter. NOTE: this issue was
originally reported to be in the imagepsloadfont function in php_gd2.dll in
the gd (PHP_GD2) extension in PHP 5.2.3.
Author | Note |
---|---|
jdstrand | while tetex-bin and texlive-bin have embedded t1lib code, it’s not used |