Debian Texlive-Base vulnerabilities
2 known vulnerabilities affecting debian/texlive-base.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2016-10243P2CRITICALCVSS 9.8fixed in texlive-base 2016.20161130-1 (bookworm)2016
CVE-2016-10243 [CRITICAL] CVE-2016-10243: texlive-base - TeX Live allows remote attackers to execute arbitrary commands by leveraging inc...
TeX Live allows remote attackers to execute arbitrary commands by leveraging inclusion of mpost in shell_escape_commands in the texmf.cnf config file.
Scope: local
bookworm: resolved (fixed in 2016.20161130-1)
bullseye: resolved (fixed in 2016.20161130-1)
forky: resolved (fixed in 2016.20161130-1)
sid: resolved (fixed in 2016.20161130-1)
trixie: resolved (f
debian
CVE-2008-1693P3MEDIUMCVSS 6.8fixed in poppler 0.6.4-1 (bookworm)2008
CVE-2008-1693 [MEDIUM] CVE-2008-1693: poppler - The CairoFont::create function in CairoFontEngine.cc in Poppler, possibly before...
The CairoFont::create function in CairoFontEngine.cc in Poppler, possibly before 0.8.0, as used in Xpdf, Evince, ePDFview, KWord, and other applications, does not properly handle embedded fonts in PDF files, which allows remote attackers to execute arbitrary code via a crafted font object, related to dereferencing a function pointer associated with the type of this
debian