PT-2024-13324 · Tex Live+2 · Tex Live+2
Duck
+1
·
Published
2024-01-26
·
Updated
2024-11-29
·
CVE-2023-46051
CVSS v3.1
3.3
Low
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
TeX Live version 944e257
Description
The issue in TeX Live allows a NULL pointer dereference in the
tounicode.c file, located in texk/web2c/pdftexdir. However, it is noted that this issue is disputed and might be categorized as a usability problem rather than a security vulnerability. There is no information provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited.Recommendations
For TeX Live version 944e257, at the moment, there is no information about a newer version that contains a fix for this issue.
Fix
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Debian
Suse
Tex Live