Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

Debian 10 Buster DLA-3427-2 Critical: Texlive-bin Regression Fix

debian lts
Calendar Grey May 31, 2023
Dist Debian Esm H88
Ubuntu Security Notice USN-7094-1 resolves various vulnerabilities in texlive-bin, improving overall system security.
It was discovered that the patch to fix CVE-2023-32700 in texlive-bin, released as DLA-3427-1, was incomplete and caused an error when running the lualatex command

Summary

CVE-2019-18604

A flaw was found in axohelp in axodraw2. The sprintf function is
mishandled which may cause a stack overflow error.

For Debian 10 buster, this problem has been fixed in version
2018.20181218.49446-1+deb10u2.

We recommend that you upgrade your texlive-bin packages.

For the detailed security status of texlive-bin please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/texlive-bin

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


Severity
critical
Lowest
Low
Medium
High
Critical

-------------------------------------------------------------------------Package: texlive-bin
Version: 2018.20181218.49446-1+deb10u2
CVE ID: CVE-2019-18604
Debian Bug: 1036891

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.