CVE-2015-5700
published 2017-08-25CVE-2015-5700: mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack.
PriorityP427medium6.1CVSS 3.0
AVLACLPRLUINSUCLIHAN
EPSS
0.42%
33.9th percentile
mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | texlive-bin | < texlive-bin 2014.20140926.35254-5 (bookworm) | texlive-bin 2014.20140926.35254-5 (bookworm) |
| debian | texlive-bin | — | — |
| tug | texlive | — | — |
| tug | texlive | — | — |
| tug | texlive | — | — |
| tug | texlive | — | — |
| tug | texlive | — | — |
CVSS provenance
nvdv3.06.1MEDIUMCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N
nvdv2.05.6MEDIUMAV:L/AC:L/Au:N/C:P/I:C/A:N
osv6.1MEDIUM
vendor_debian6.1MEDIUM
vendor_redhat6.1MEDIUM
vendor_ubuntu6.1MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Tex Live vulnerabilities
vendor_ubuntu·2018-10-11·CVSS 6.1
CVE-2015-5700 [MEDIUM] Tex Live vulnerabilities
Title: Tex Live vulnerabilities
Summary: Several security issues were fixed in Tex Live.
Jakub Wilk discovered that Tex Live incorrectly handled certain files.
An attacker could possibly use this issue to execute arbitrary code.
This issue only affected Ubuntu 14.04 LTS. (CVE-2015-5700)
It was discovered that Tex Live incorrectly handled certain files.
An attacker could possibly use this issue to execute arbitrary code.
(CVE-2018-17407)
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
texlive: insecure use of /tmp in mktexlsr
vendor_redhat·2015-01-11·CVSS 6.1
CVE-2015-5701 [MEDIUM] CWE-377 texlive: insecure use of /tmp in mktexlsr
texlive: insecure use of /tmp in mktexlsr
mktexlsr revision 36855, and before revision 36626 as packaged in texlive allows local users to write to arbitrary files via a symlink attack. NOTE: this vulnerability exists due to the reversion of a fix of CVE-2015-5700.
It was discovered that the mktexlsr script of the texlive package creates temporary files in an insecure way. A local attacker could possibly use this flaw to perform a symbolic link attack and overwrite arbitrary files with the privileges of the user running mktexslr, or obtain sensitive information from the temporary files.
Package: texlive (Red Hat Enterprise Linux 6) - Not affected
Package: texlive (Red Hat Enterprise Linux 7) - Will not fix
Red Hat
texlive: insecure use of /tmp in mktexlsr
vendor_redhat·2015-01-11·CVSS 6.1
CVE-2015-5700 [MEDIUM] CWE-377 texlive: insecure use of /tmp in mktexlsr
texlive: insecure use of /tmp in mktexlsr
mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack.
It was discovered that the mktexlsr script of the texlive package creates temporary files in an insecure way. A local attacker could possibly use this flaw to perform a symbolic link attack and overwrite arbitrary files with the privileges of the user running mktexslr, or obtain sensitive information from the temporary files.
Package: texlive (Red Hat Enterprise Linux 6) - Not affected
Package: texlive (Red Hat Enterprise Linux 7) - Will not fix
Debian
CVE-2015-5701: texlive-bin - mktexlsr revision 36855, and before revision 36626 as packaged in texlive allows...
vendor_debian·2015·CVSS 6.1
CVE-2015-5701 [MEDIUM] CVE-2015-5701: texlive-bin - mktexlsr revision 36855, and before revision 36626 as packaged in texlive allows...
mktexlsr revision 36855, and before revision 36626 as packaged in texlive allows local users to write to arbitrary files via a symlink attack. NOTE: this vulnerability exists due to the reversion of a fix of CVE-2015-5700.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
Debian
CVE-2015-5700: texlive-bin - mktexlsr revision 22855 through revision 36625 as packaged in texlive allows loc...
vendor_debian·2015·CVSS 6.1
CVE-2015-5700 [MEDIUM] CVE-2015-5700: texlive-bin - mktexlsr revision 22855 through revision 36625 as packaged in texlive allows loc...
mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack.
Scope: local
bookworm: resolved (fixed in 2014.20140926.35254-5)
bullseye: resolved (fixed in 2014.20140926.35254-5)
forky: resolved (fixed in 2014.20140926.35254-5)
sid: resolved (fixed in 2014.20140926.35254-5)
trixie: resolved (fixed in 2014.20140926.35254-5)
GHSA
GHSA-548j-7qqv-2mvf: mktexlsr revision 36855, and before revision 36626 as packaged in texlive allows local users to write to arbitrary files via a symlink attack
ghsa_unreviewed·2022-05-17·CVSS 6.1
CVE-2015-5701 [MEDIUM] CWE-59 GHSA-548j-7qqv-2mvf: mktexlsr revision 36855, and before revision 36626 as packaged in texlive allows local users to write to arbitrary files via a symlink attack
mktexlsr revision 36855, and before revision 36626 as packaged in texlive allows local users to write to arbitrary files via a symlink attack. NOTE: this vulnerability exists due to the reversion of a fix of CVE-2015-5700.
GHSA
GHSA-hqv5-49rw-222p: mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack
ghsa_unreviewed·2022-05-14
CVE-2015-5700 [MEDIUM] CWE-59 GHSA-hqv5-49rw-222p: mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack
mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack.
OSV
texlive-bin vulnerabilities
osv·2018-10-11·CVSS 6.1
CVE-2015-5700 [MEDIUM] texlive-bin vulnerabilities
texlive-bin vulnerabilities
Jakub Wilk discovered that Tex Live incorrectly handled certain files.
An attacker could possibly use this issue to execute arbitrary code.
This issue only affected Ubuntu 14.04 LTS. (CVE-2015-5700)
It was discovered that Tex Live incorrectly handled certain files.
An attacker could possibly use this issue to execute arbitrary code.
(CVE-2018-17407)
OSV
CVE-2015-5700: mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack
osv·2017-08-25·CVSS 6.1
CVE-2015-5700 [MEDIUM] CVE-2015-5700: mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack
mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack.
No detection rules found.
No public exploits indexed.
http://www.openwall.com/lists/oss-security/2015/07/30/6https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775139https://bugzilla.redhat.com/show_bug.cgi?id=1181167https://usn.ubuntu.com/3788-1/https://www.tug.org/svn/texlive/trunk/Build/source/texk/kpathsea/mktexlsr?r1=19613&r2=22885https://www.tug.org/svn/texlive/trunk/Build/source/texk/kpathsea/mktexlsr?view=loghttp://www.openwall.com/lists/oss-security/2015/07/30/6https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775139https://bugzilla.redhat.com/show_bug.cgi?id=1181167https://usn.ubuntu.com/3788-1/https://www.tug.org/svn/texlive/trunk/Build/source/texk/kpathsea/mktexlsr?r1=19613&r2=22885https://www.tug.org/svn/texlive/trunk/Build/source/texk/kpathsea/mktexlsr?view=log
2017-08-25
Published