Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Tug Subscribe
Filtered by product Texlive
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-5700 1 Tug 1 Texlive 2018-10-12 5.6 MEDIUM 6.1 MEDIUM
mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack.
CVE-2015-0296 2 Fedoraproject, Tug 2 Fedora, Texlive 2017-11-01 1.2 LOW 4.7 MEDIUM
The pre-install script in texlive 3.1.20140525_r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226_r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory.
CVE-2015-5701 1 Tug 1 Texlive 2017-09-12 5.6 MEDIUM 6.1 MEDIUM
mktexlsr revision 36855, and before revision 36626 as packaged in texlive allows local users to write to arbitrary files via a symlink attack. NOTE: this vulnerability exists due to the reversion of a fix of CVE-2015-5700.