Tug Texlive vulnerabilities
3 known vulnerabilities affecting tug/texlive.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2015-0296MEDIUMCVSS 4.7v6.20131226_r32488.fc20v3.1.20140525_r34255.fc212017-10-06
CVE-2015-0296 [MEDIUM] CWE-264 CVE-2015-0296: The pre-install script in texlive 3.1.20140525_r34255.fc21 as packaged in Fedora 21 and rpm, and tex
The pre-install script in texlive 3.1.20140525_r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226_r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory.
nvd
CVE-2015-5701MEDIUMCVSS 6.1v20100722v20110705+3 more2017-08-25
CVE-2015-5701 [MEDIUM] CVE-2015-5701: mktexlsr revision 36855, and before revision 36626 as packaged in texlive allows local users to writ
mktexlsr revision 36855, and before revision 36626 as packaged in texlive allows local users to write to arbitrary files via a symlink attack. NOTE: this vulnerability exists due to the reversion of a fix of CVE-2015-5700.
nvd
CVE-2015-5700MEDIUMCVSS 6.1v20100722v20110705+3 more2017-08-25
CVE-2015-5700 [MEDIUM] CWE-59 CVE-2015-5700: mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to
mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack.
nvd