Search for packages
| purl | pkg:deb/debian/texlive-bin@2020.20200327.54578-7%2Bdeb11u1?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-15kj-emtf-vbag | OTFCC commit 617837b was discovered to contain a segmentation violation via /release-x64/otfccdump+0x65f724. |
CVE-2022-35065
|
| VCID-1upn-29dc-zfcc | Multiple vulnerabilities were found in texlive-core, allowing attackers to execute arbitrary code. |
CVE-2010-0827
|
| VCID-22hs-pt9p-fbdn | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x4adcdb in __asan_memset. |
CVE-2022-35064
|
| VCID-24vd-syhs-gbhc | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6e41a8. |
CVE-2022-35063
|
| VCID-261q-t1h8-bufj | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6c08a6. |
CVE-2022-35043
|
| VCID-2pzz-h5vd-wyah | OTFCC v0.10.4 was discovered to contain a segmentation violation via /x86_64-linux-gnu/libc.so.6+0xbb384. |
CVE-2022-35469
|
| VCID-2unr-76q5-y7aw | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x61731f. |
CVE-2022-35053
|
| VCID-3a9d-3kme-73d2 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b544e. |
CVE-2022-35474
|
| VCID-3ggs-vja8-r3de | Improper Restriction of Operations within the Bounds of a Memory Buffer Buffer overflow in the png_read_IDAT_data function in pngrutil.c in libpng allows context-dependent attackers to execute arbitrary code via IDAT data with a large width, a different vulnerability than CVE-2014-9495. |
CVE-2015-0973
|
| VCID-3gpv-93qp-bfhn | A vulnerability in Kpathsea allows remote attackers to execute arbitrary commands by manipulating the -tex option from mpost program. |
CVE-2016-10243
|
| VCID-3v18-r2f3-1qdv | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6e1fc8. |
CVE-2022-35036
|
| VCID-47dt-fhqh-pkag | LuaTeX before 1.17.0 allows a document (compiled with the default settings) to make arbitrary network requests. This occurs because full access to the socket library is permitted by default, as stated in the documentation. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5. |
CVE-2023-32668
|
| VCID-48xg-g53r-s7f8 | A vulnerability has been discovered in Feynmf allowing local users to overwrite arbitrary files via a symlink attack. |
CVE-2007-5940
|
| VCID-4cy9-447q-mbf3 | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b064d. |
CVE-2022-35038
|
| VCID-4f2u-sskp-zkhu | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6e20a0. |
CVE-2022-35039
|
| VCID-4gwj-gm2f-uugx | Multiple vulnerabilities have been discovered in teTeX, possibly allowing to execute arbitrary code or overwrite arbitrary files. |
CVE-2007-5936
|
| VCID-4j8e-6t21-3ke9 | Multiple vulnerabilities have been discovered in teTeX, possibly allowing to execute arbitrary code or overwrite arbitrary files. |
CVE-2007-5937
|
| VCID-4r5u-9w2z-rkgh | Multiple vulnerabilities were found in texlive-core, allowing attackers to execute arbitrary code. |
CVE-2010-0739
|
| VCID-4ses-k1k7-9ycz | OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x703969. |
CVE-2022-35485
|
| VCID-4z3j-9yy6-u3eb | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x617087. |
CVE-2022-35456
|
| VCID-4zzy-q5zp-jkgm | A buffer over-read flaw was found in the bundled expat library. An attacker who is able to get Apache to parse an untrused XML document (for example through mod_dav) may be able to cause a crash. This crash would only be a denial of service if using the worker MPM. |
CVE-2009-3720
|
| VCID-5p9e-n6p5-mudd | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x65fc97. |
CVE-2022-35470
|
| VCID-6fwt-gfj6-j7av | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6e41b0. |
CVE-2022-35471
|
| VCID-72m2-st3u-uyfm | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b04de. |
CVE-2022-35447
|
| VCID-76vf-yebs-mkg8 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b55af. |
CVE-2022-35448
|
| VCID-7x9j-31fq-hkg2 | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6e41b8. |
CVE-2022-35066
|
| VCID-86bc-apbh-sbbn | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x61731f. |
CVE-2022-35460
|
| VCID-88vn-jepe-33c1 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6c0414. |
CVE-2022-35465
|
| VCID-8qud-4v19-tyh4 | Multiple vulnerabilities have been discovered in teTeX, possibly allowing to execute arbitrary code or overwrite arbitrary files. |
CVE-2007-5935
|
| VCID-8qwb-455y-bbcp | OTFCC commit 617837b was discovered to contain a segmentation violation via /lib/x86_64-linux-gnu/libc.so.6+0xbb384. |
CVE-2022-35023
|
| VCID-8xnh-5jb4-uygz | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b559f. |
CVE-2022-35035
|
| VCID-911d-pbx5-4qge | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x617087. |
CVE-2022-35044
|
| VCID-94qj-jzse-vuhv | This GLSA contains notification of vulnerabilities found in several Gentoo packages which have been fixed prior to January 1, 2011. The worst of these vulnerabilities could lead to local privilege escalation and remote code execution. Please see the package list and CVE identifiers below for more information. |
CVE-2010-0829
|
| VCID-97ds-z5dk-6kbu | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b84b1. |
CVE-2022-35450
|
| VCID-9e9z-hm4a-37ab | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b0d63. |
CVE-2022-35455
|
| VCID-9kvx-465q-fkam | texlive: arbitrary code execution allows document complied with older version |
CVE-2023-32700
|
| VCID-9mn1-e4dm-nfhd | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b05aa. |
CVE-2022-35047
|
| VCID-9rxm-r4mc-ckhe | Multiple vulnerabilities have been discovered in Xpdf, the worst of which could possibly lead to arbitrary code execution. |
CVE-2021-27548
|
| VCID-a6an-r3tj-93ge | OTFCC commit 617837b was discovered to contain a segmentation violation via /release-x64/otfccdump+0x6badae. |
CVE-2022-35022
|
| VCID-ast7-b75m-7uh3 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6e420d. |
CVE-2022-35468
|
| VCID-bdbb-4kgq-y7ad | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b5567. |
CVE-2022-35040
|
| VCID-bdke-da3n-37hw | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b84b1. |
CVE-2022-35052
|
| VCID-bqqh-5311-w7ca | texlive-bin commit c515e was discovered to contain heap buffer overflow via the function ttfLoadHDMX:ttfdump. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted TTF file. |
CVE-2024-25262
|
| VCID-bw8n-jvsd-bqe9 | OTFCC v0.10.4 was discovered to contain a heap buffer overflow after free via otfccbuild.c. |
CVE-2022-33047
|
| VCID-d4tp-mmgz-6udh | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b05ce. |
CVE-2022-35058
|
| VCID-dcjs-7eyq-a7gn | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b55af. |
CVE-2022-35051
|
| VCID-dn3b-smm9-63eb | Poppler does not handle fonts inside PDF files safely, allowing for execution of arbitrary code. |
CVE-2008-1693
|
| VCID-e8ev-axf6-dbc3 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6c0bc3. |
CVE-2022-35462
|
| VCID-ec4g-satx-pqg2 | Multiple vulnerabilities were found in texlive-core, allowing attackers to execute arbitrary code. |
CVE-2010-1440
|
| VCID-ecbh-vzp4-x7dr | OTFCC commit 617837b was discovered to contain a global buffer overflow via /release-x64/otfccdump+0x718693. |
CVE-2022-35021
|
| VCID-eeet-mw7y-rudx | OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x4fe954. |
CVE-2022-35477
|
| VCID-euy5-4h8q-hyb3 | OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x4fe9a7. |
CVE-2022-35473
|
| VCID-fbkh-5sb9-auc5 | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6e420d. |
CVE-2022-35068
|
| VCID-fkft-abbt-6ydx | OTFCC v0.10.4 was discovered to contain a segmentation violation via /multiarch/memmove-vec-unaligned-erms.S. |
CVE-2022-35481
|
| VCID-fymb-bvn2-p7ej | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6c0473. |
CVE-2022-35466
|
| VCID-fz4x-mcwe-aqgf | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b05aa. |
CVE-2022-35454
|
| VCID-gh4u-68x5-27db | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b0466. |
CVE-2022-35449
|
| VCID-gsk7-273v-qfdz | OTFCC commit 617837b was discovered to contain a segmentation violation via /release-x64/otfccdump+0x4fe954. |
CVE-2022-35030
|
| VCID-h73f-kd2u-5yg3 | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6e41b0. |
CVE-2022-35067
|
| VCID-hd3g-vc2p-4fhf | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6171b2. |
CVE-2022-35464
|
| VCID-hqv6-gney-2fgw | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6e41a8. |
CVE-2022-35475
|
| VCID-hx8f-h823-kkhr | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6c0bc3. |
CVE-2022-35062
|
| VCID-jahu-d9d6-jbbt | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6c0a32. |
CVE-2022-35461
|
| VCID-jxh3-k3es-bqah | OTFCC commit 617837b was discovered to contain a segmentation violation via /release-x64/otfccdump+0x4fbc0b. |
CVE-2022-35026
|
| VCID-k5ue-ga1d-q7gv | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b544e. |
CVE-2022-35069
|
| VCID-ka9w-ss8w-sqhb | texlive: insecure use of /tmp in mktexlsr |
CVE-2015-5700
|
| VCID-knp7-hye9-a3gv | OTFCC commit 617837b was discovered to contain a segmentation violation via /multiarch/memmove-vec-unaligned-erms.S. |
CVE-2022-35024
|
| VCID-m7rd-mh53-bycu | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6e7e3d. |
CVE-2022-35034
|
| VCID-mm9w-wmdz-qye4 | OTFCC commit 617837b was discovered to contain a segmentation violation via /release-x64/otfccdump+0x5266a8. |
CVE-2022-35025
|
| VCID-msch-wzj9-h7ga | OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x4fbbb6. |
CVE-2022-35479
|
| VCID-mxh6-rpb3-tbbq | Improper Restriction of Operations within the Bounds of a Memory Buffer Heap-based buffer overflow in the png_combine_row function in libpng, when running on systems, might allow context-dependent attackers to execute arbitrary code via a "very wide interlaced" PNG image. |
CVE-2014-9495
|
| VCID-n68j-881x-3uhp | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6e41b8. |
CVE-2022-35467
|
| VCID-nckm-umvv-3qcn | OTFCC commit 617837b was discovered to contain a segmentation violation via /release-x64/otfccdump+0x4fe9a7. |
CVE-2022-35027
|
| VCID-nk95-xdjm-vyfq | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6e412a. |
CVE-2022-35459
|
| VCID-nucx-up6e-ayb8 | OTFCC v0.10.4 was discovered to contain a global overflow via /release-x64/otfccdump+0x718693. |
CVE-2022-35472
|
| VCID-nvrx-x1qs-vkdb | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b0b2c. |
CVE-2022-35452
|
| VCID-p973-cuza-tuhp | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6e412a. |
CVE-2022-35061
|
| VCID-q4qv-tq4j-3uh2 | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x4adb11. |
CVE-2022-35042
|
| VCID-qd9y-35s4-9kcp | Multiple vulnerabilities were found in texlive-core, allowing attackers to execute arbitrary code. |
CVE-2009-1284
|
| VCID-qdek-hd55-hbe2 | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6adb1e. |
CVE-2022-35037
|
| VCID-qjxs-qf6j-zycc | OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x6b6a8f. |
CVE-2022-35484
|
| VCID-qtav-hqnd-b7fa | A buffer over-read flaw was found in the bundled expat library. An attacker who is able to get Apache to parse an untrused XML document (for example through mod_dav) may be able to cause a crash. This crash would only be a denial of service if using the worker MPM. |
CVE-2009-3560
|
| VCID-r5ua-zasf-2kae | texlive: insecure use of /tmp in mktexlsr |
CVE-2015-5701
|
| VCID-rrqw-zrh2-33dn | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b558f. |
CVE-2022-35041
|
| VCID-rype-ss6b-aude | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b04de. |
CVE-2022-35050
|
| VCID-su1a-e49q-pffw | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6171b2. |
CVE-2022-35054
|
| VCID-t8bs-vvts-47ag | OTFCC commit 617837b was discovered to contain a segmentation violation via /release-x64/otfccdump+0x6babea. |
CVE-2022-35029
|
| VCID-tju2-c87e-5kcx | In axohelp.c before 1.3 in axohelp in axodraw2 before 2.1.1b, as distributed in TeXLive and other collections, sprintf is mishandled. |
CVE-2019-18604
|
| VCID-tqm6-8w98-q3dr | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b0d63. |
CVE-2022-35045
|
| VCID-tz15-rmx4-pkdq | OTFCC commit 617837b was discovered to contain a segmentation violation via /release-x64/otfccdump+0x6b6a8f. |
CVE-2022-35032
|
| VCID-u9ur-b18b-gfhr | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6c0473. |
CVE-2022-35055
|
| VCID-utve-4z7c-tkhk | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6c0a32. |
CVE-2022-35060
|
| VCID-v7pb-brn7-v7ah | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b0478. |
CVE-2022-35463
|
| VCID-v9pk-ecc9-yqbm | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b03b5. |
CVE-2022-35049
|
| VCID-vfty-pe45-pya4 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6c08a6. |
CVE-2022-35453
|
| VCID-vk2y-ftzh-sqgh | OTFCC commit 617837b was discovered to contain a segmentation violation via /release-x64/otfccdump+0x703969. |
CVE-2022-35031
|
| VCID-whjt-pvqp-jycr | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b0b2c. |
CVE-2022-35048
|
| VCID-whmq-gsw4-sbgg | OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x6badae. |
CVE-2022-35486
|
| VCID-wngf-qn2d-ykef | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b0466. |
CVE-2022-35046
|
| VCID-ws93-jgn7-83c8 | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x65fc97. |
CVE-2022-35070
|
| VCID-xfy6-snb8-63av | OTFCC commit 617837b was discovered to contain a segmentation violation via /release-x64/otfccdump+0x4fbbb6. |
CVE-2022-35028
|
| VCID-xrgb-9dwh-mubm | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b03b5. |
CVE-2022-35451
|
| VCID-xxn1-2trx-myhs | OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x6babea. |
CVE-2022-35478
|
| VCID-xzdx-45tg-w7ft | OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x5266a8. |
CVE-2022-35483
|
| VCID-y2pg-cgqs-s3gb | OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x4fbc0b. |
CVE-2022-35476
|
| VCID-y4qh-ek9n-cyc1 | OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x65f724. |
CVE-2022-35482
|
| VCID-ys96-uhkv-2qgv | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6c0414. |
CVE-2022-35059
|
| VCID-z8b6-9u9h-gkcp | security update |
CVE-2018-17407
|
| VCID-zbsq-dfju-mkf5 | OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b05ce. |
CVE-2022-35458
|
| VCID-zqjn-srqb-kfcg | OTFCC commit 617837b was discovered to contain a heap buffer overflow via /release-x64/otfccdump+0x6b0478. |
CVE-2022-35056
|