Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/texlive-bin@2014.20140926.35254-6
purl pkg:deb/debian/texlive-bin@2014.20140926.35254-6
Next non-vulnerable version 2026.20260303.78225+ds-1
Latest non-vulnerable version 2026.20260303.78225+ds-1
Risk 4.4
Vulnerabilities affecting this package (6)
Vulnerability Summary Fixed by
VCID-3gpv-93qp-bfhn
Aliases:
CVE-2016-10243
A vulnerability in Kpathsea allows remote attackers to execute arbitrary commands by manipulating the -tex option from mpost program.
2020.20200327.54578-7+deb11u1
Affected by 2 other vulnerabilities.
VCID-47dt-fhqh-pkag
Aliases:
CVE-2023-32668
LuaTeX before 1.17.0 allows a document (compiled with the default settings) to make arbitrary network requests. This occurs because full access to the socket library is permitted by default, as stated in the documentation. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5.
2022.20220321.62855-5.1+deb12u2
Affected by 87 other vulnerabilities.
VCID-9kvx-465q-fkam
Aliases:
CVE-2023-32700
texlive: arbitrary code execution allows document complied with older version
2020.20200327.54578-7+deb11u1
Affected by 2 other vulnerabilities.
VCID-bqqh-5311-w7ca
Aliases:
CVE-2024-25262
texlive-bin commit c515e was discovered to contain heap buffer overflow via the function ttfLoadHDMX:ttfdump. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted TTF file.
2022.20220321.62855-5.1+deb12u2
Affected by 87 other vulnerabilities.
VCID-tju2-c87e-5kcx
Aliases:
CVE-2019-18604
In axohelp.c before 1.3 in axohelp in axodraw2 before 2.1.1b, as distributed in TeXLive and other collections, sprintf is mishandled.
2020.20200327.54578-7+deb11u1
Affected by 2 other vulnerabilities.
VCID-z8b6-9u9h-gkcp
Aliases:
CVE-2018-17407
security update
2016.20160513.41080.dfsg-2+deb9u1
Affected by 6 other vulnerabilities.
2018.20181218.49446-1
Affected by 5 other vulnerabilities.
Vulnerabilities fixed by this package (3)
Vulnerability Summary Aliases
VCID-3ggs-vja8-r3de Improper Restriction of Operations within the Bounds of a Memory Buffer Buffer overflow in the png_read_IDAT_data function in pngrutil.c in libpng allows context-dependent attackers to execute arbitrary code via IDAT data with a large width, a different vulnerability than CVE-2014-9495. CVE-2015-0973
VCID-ka9w-ss8w-sqhb texlive: insecure use of /tmp in mktexlsr CVE-2015-5700
VCID-mxh6-rpb3-tbbq Improper Restriction of Operations within the Bounds of a Memory Buffer Heap-based buffer overflow in the png_combine_row function in libpng, when running on systems, might allow context-dependent attackers to execute arbitrary code via a "very wide interlaced" PNG image. CVE-2014-9495

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T00:16:35.859897+00:00 Debian Oval Importer Fixing VCID-mxh6-rpb3-tbbq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-16T00:00:00.232913+00:00 Debian Oval Importer Fixing VCID-3ggs-vja8-r3de https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:51:46.944696+00:00 Debian Oval Importer Affected by VCID-bqqh-5311-w7ca https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:06:15.044688+00:00 Debian Oval Importer Fixing VCID-ka9w-ss8w-sqhb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:51:56.457729+00:00 Debian Oval Importer Affected by VCID-z8b6-9u9h-gkcp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:47:02.459907+00:00 Debian Oval Importer Affected by VCID-47dt-fhqh-pkag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:14:32.924143+00:00 Debian Oval Importer Affected by VCID-9kvx-465q-fkam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:07:16.434999+00:00 Debian Oval Importer Affected by VCID-3gpv-93qp-bfhn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T17:55:11.475274+00:00 Debian Oval Importer Affected by VCID-tju2-c87e-5kcx https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T14:34:37.375128+00:00 Debian Oval Importer Affected by VCID-z8b6-9u9h-gkcp https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.4.0
2026-04-11T23:50:16.841272+00:00 Debian Oval Importer Fixing VCID-mxh6-rpb3-tbbq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T23:34:12.674624+00:00 Debian Oval Importer Fixing VCID-3ggs-vja8-r3de https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:28:19.740482+00:00 Debian Oval Importer Affected by VCID-bqqh-5311-w7ca https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T21:44:14.553568+00:00 Debian Oval Importer Fixing VCID-ka9w-ss8w-sqhb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T21:30:26.154616+00:00 Debian Oval Importer Affected by VCID-z8b6-9u9h-gkcp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T21:25:39.294253+00:00 Debian Oval Importer Affected by VCID-47dt-fhqh-pkag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:54:18.723347+00:00 Debian Oval Importer Affected by VCID-9kvx-465q-fkam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:51:06.167853+00:00 Debian Oval Importer Affected by VCID-3gpv-93qp-bfhn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:41:07.038222+00:00 Debian Oval Importer Affected by VCID-tju2-c87e-5kcx https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T14:22:54.866650+00:00 Debian Oval Importer Affected by VCID-z8b6-9u9h-gkcp https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.3.0
2026-04-08T23:22:21.644528+00:00 Debian Oval Importer Fixing VCID-mxh6-rpb3-tbbq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T23:06:55.290757+00:00 Debian Oval Importer Fixing VCID-3ggs-vja8-r3de https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T22:04:05.822345+00:00 Debian Oval Importer Affected by VCID-bqqh-5311-w7ca https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:22:04.830087+00:00 Debian Oval Importer Fixing VCID-ka9w-ss8w-sqhb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:08:44.689747+00:00 Debian Oval Importer Affected by VCID-z8b6-9u9h-gkcp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:04:09.711111+00:00 Debian Oval Importer Affected by VCID-47dt-fhqh-pkag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:33:45.750295+00:00 Debian Oval Importer Affected by VCID-9kvx-465q-fkam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:35:55.745582+00:00 Debian Oval Importer Affected by VCID-3gpv-93qp-bfhn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:28:25.796089+00:00 Debian Oval Importer Affected by VCID-tju2-c87e-5kcx https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-07T22:56:29.121288+00:00 Debian Oval Importer Affected by VCID-z8b6-9u9h-gkcp https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.1.0