CVE-2019-19601
Published: 5 December 2019
OpenDetex 2.8.5 has a Buffer Overflow in TexOpen in detex.l because of an incorrect sprintf.
Priority
CVSS 3 base score: 7.8
Status
Package | Release | Status |
---|---|---|
texlive-bin Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(code not compiled)
|
focal |
Not vulnerable
(code not compiled)
|
|
groovy |
Not vulnerable
(code not compiled)
|
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
upstream |
Needs triage
|
|
xenial |
Not vulnerable
(code not compiled)
|
Notes
Author | Note |
---|---|
mdeslaur | affected code is built inside #ifndef KPATHSEA. Debian/Ubuntu doesn't build affected code. |