CVE-2011-1400

Name of the Vulnerable Software and Affected Versions tex-common versions prior to 2.08.1

Description The issue concerns multiple vulnerabilities in the tex-common package of Debian GNU/Linux, potentially leading to breaches of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely. Specifically, the default configuration of the shell escape commands directive in certain versions of the tex-common package may allow remote attackers to execute arbitrary code via a crafted TeX document.

Recommendations For versions prior to 2.08.1, update to version 2.08.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the shell escape commands directive to minimize the risk of exploitation.