Gnu: >> Texinfo >> 4.8 Security Vulnerabilities
Buffer overflow in the readline function in util/texindex.c, as used by the (1) texi2dvi and (2) texindex commands, in texinfo 4.8 and earlier allows local users to execute arbitrary code via a crafted Texinfo file.
CVSS Score
4.6
EPSS Score
0.002
Published
2006-11-08
The sort_offline function for texindex in texinfo 4.8 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files.
CVSS Score
1.2
EPSS Score
0.0
Published
2005-09-21