CVE-2015-5700

Опубликовано: 25 авг. 2017

Источник: debian

EPSS Низкий

Описание

mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack.

Пакет	Статус	Версия исправления	Релиз	Тип
texlive-bin	fixed	2014.20140926.35254-5		package
texlive-bin	no-dsa		wheezy	package
texlive-bin	no-dsa		squeeze	package

https://www.openwall.com/lists/oss-security/2015/04/23/22
https://www.openwall.com/lists/oss-security/2015/07/28/5
https://www.tug.org/svn/texlive/trunk/Build/source/texk/kpathsea/mktexlsr?r1=19613&r2=22885

EPSS

Процентиль: 34%

0.00139

Низкий

CVE-2015-5700

CVSS3: 6.1

ubuntu

больше 8 лет назад

mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack.

CVE-2015-5700

redhat

около 11 лет назад

mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack.

CVE-2015-5700

CVSS3: 6.1

nvd

больше 8 лет назад

mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack.

GHSA-hqv5-49rw-222p

CVSS3: 6.1

github

больше 3 лет назад

mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack.

EPSS

Процентиль: 34%

0.00139

Низкий