vulnerability
Oracle Linux: CVE-2023-32700: ELSA-2023-3661: texlive security update (IMPORTANT) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | 2023-05-20 | 2023-06-21 | 2025-01-07 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
2023-05-20
Added
2023-06-21
Modified
2025-01-07
Description
LuaTeX before 1.17.0 allows execution of arbitrary shell commands when compiling a TeX file obtained from an untrusted source. This occurs because luatex-core.lua lets the original io.popen be accessed. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5.
An arbitrary code execution vulnerability was found in LuaTeX (TeX Live) that allows any document compiled with older versions of LuaTeX to execute arbitrary shell commands, even with shell escape disabled.
An arbitrary code execution vulnerability was found in LuaTeX (TeX Live) that allows any document compiled with older versions of LuaTeX to execute arbitrary shell commands, even with shell escape disabled.
Solution(s)
oracle-linux-upgrade-texliveoracle-linux-upgrade-texlive-adjustboxoracle-linux-upgrade-texlive-aeoracle-linux-upgrade-texlive-algorithmsoracle-linux-upgrade-texlive-alphalphoracle-linux-upgrade-texlive-amsclsoracle-linux-upgrade-texlive-amsfontsoracle-linux-upgrade-texlive-amsmathoracle-linux-upgrade-texlive-anyfontsizeoracle-linux-upgrade-texlive-anysizeoracle-linux-upgrade-texlive-appendixoracle-linux-upgrade-texlive-arabxetexoracle-linux-upgrade-texlive-arphicoracle-linux-upgrade-texlive-atbegshioracle-linux-upgrade-texlive-attachfileoracle-linux-upgrade-texlive-attachfile2oracle-linux-upgrade-texlive-atveryendoracle-linux-upgrade-texlive-auxhookoracle-linux-upgrade-texlive-avantgaroracle-linux-upgrade-texlive-awesomeboxoracle-linux-upgrade-texlive-babeloracle-linux-upgrade-texlive-babelbiboracle-linux-upgrade-texlive-babel-englishoracle-linux-upgrade-texlive-baseoracle-linux-upgrade-texlive-beameroracle-linux-upgrade-texlive-beraoracle-linux-upgrade-texlive-betonoracle-linux-upgrade-texlive-bibtexoracle-linux-upgrade-texlive-bibtopicoracle-linux-upgrade-texlive-bidioracle-linux-upgrade-texlive-bigfootoracle-linux-upgrade-texlive-bigintcalcoracle-linux-upgrade-texlive-bitsetoracle-linux-upgrade-texlive-bookmanoracle-linux-upgrade-texlive-bookmarkoracle-linux-upgrade-texlive-booktabsoracle-linux-upgrade-texlive-breakurloracle-linux-upgrade-texlive-breqnoracle-linux-upgrade-texlive-captionoracle-linux-upgrade-texlive-capt-oforacle-linux-upgrade-texlive-carlisleoracle-linux-upgrade-texlive-catchfileoracle-linux-upgrade-texlive-changebaroracle-linux-upgrade-texlive-changepageoracle-linux-upgrade-texlive-charteroracle-linux-upgrade-texlive-chngcntroracle-linux-upgrade-texlive-citeoracle-linux-upgrade-texlive-cjkoracle-linux-upgrade-texlive-classpackoracle-linux-upgrade-texlive-cmoracle-linux-upgrade-texlive-cmaporacle-linux-upgrade-texlive-cmextraoracle-linux-upgrade-texlive-cm-lgcoracle-linux-upgrade-texlive-cm-superoracle-linux-upgrade-texlive-cnsoracle-linux-upgrade-texlive-collectboxoracle-linux-upgrade-texlive-collection-basicoracle-linux-upgrade-texlive-collection-fontsrecommendedoracle-linux-upgrade-texlive-collection-htmlxmloracle-linux-upgrade-texlive-collection-latexoracle-linux-upgrade-texlive-collection-latexrecommendedoracle-linux-upgrade-texlive-collection-xetexoracle-linux-upgrade-texlive-colorprofilesoracle-linux-upgrade-texlive-colortbloracle-linux-upgrade-texlive-contextoracle-linux-upgrade-texlive-courieroracle-linux-upgrade-texlive-croporacle-linux-upgrade-texlive-csquotesoracle-linux-upgrade-texlive-ctableoracle-linux-upgrade-texlive-ctablestackoracle-linux-upgrade-texlive-currfileoracle-linux-upgrade-texlive-datetimeoracle-linux-upgrade-texlive-dehyphoracle-linux-upgrade-texlive-dvipdfmxoracle-linux-upgrade-texlive-dvipngoracle-linux-upgrade-texlive-dvipsoracle-linux-upgrade-texlive-dvisvgmoracle-linux-upgrade-texlive-ecoracle-linux-upgrade-texlive-eepicoracle-linux-upgrade-texlive-enctexoracle-linux-upgrade-texlive-enumitemoracle-linux-upgrade-texlive-environoracle-linux-upgrade-texlive-epsforacle-linux-upgrade-texlive-epstopdforacle-linux-upgrade-texlive-epstopdf-pkgoracle-linux-upgrade-texlive-eqparboxoracle-linux-upgrade-texlive-eso-picoracle-linux-upgrade-texlive-etexoracle-linux-upgrade-texlive-etexcmdsoracle-linux-upgrade-texlive-etex-pkgoracle-linux-upgrade-texlive-etocoracle-linux-upgrade-texlive-etoolboxoracle-linux-upgrade-texlive-euencoracle-linux-upgrade-texlive-euleroracle-linux-upgrade-texlive-eurooracle-linux-upgrade-texlive-eurosymoracle-linux-upgrade-texlive-extsizesoracle-linux-upgrade-texlive-fancyboxoracle-linux-upgrade-texlive-fancyhdroracle-linux-upgrade-texlive-fancyreforacle-linux-upgrade-texlive-fancyvrboracle-linux-upgrade-texlive-filecontentsoracle-linux-upgrade-texlive-filehookoracle-linux-upgrade-texlive-finstrutoracle-linux-upgrade-texlive-fix2coloracle-linux-upgrade-texlive-fixlatvianoracle-linux-upgrade-texlive-floatoracle-linux-upgrade-texlive-fmtcountoracle-linux-upgrade-texlive-fncychaporacle-linux-upgrade-texlive-fontawesomeoracle-linux-upgrade-texlive-fontbookoracle-linux-upgrade-texlive-fontspecoracle-linux-upgrade-texlive-fonts-tlwgoracle-linux-upgrade-texlive-fontwareoracle-linux-upgrade-texlive-fontwraporacle-linux-upgrade-texlive-footmiscoracle-linux-upgrade-texlive-footnotehyperoracle-linux-upgrade-texlive-fporacle-linux-upgrade-texlive-fploracle-linux-upgrade-texlive-framedoracle-linux-upgrade-texlive-garuda-c90oracle-linux-upgrade-texlive-geometryoracle-linux-upgrade-texlive-gettitlestringoracle-linux-upgrade-texlive-glyphlistoracle-linux-upgrade-texlive-gnu-freefontoracle-linux-upgrade-texlive-graphicsoracle-linux-upgrade-texlive-graphics-cfgoracle-linux-upgrade-texlive-graphics-deforacle-linux-upgrade-texlive-grfextoracle-linux-upgrade-texlive-grffileoracle-linux-upgrade-texlive-gsftopkoracle-linux-upgrade-texlive-hangingoracle-linux-upgrade-texlive-helveticoracle-linux-upgrade-texlive-hobsuboracle-linux-upgrade-texlive-hologooracle-linux-upgrade-texlive-hycolororacle-linux-upgrade-texlive-hyperreforacle-linux-upgrade-texlive-hyphenatoracle-linux-upgrade-texlive-hyphen-baseoracle-linux-upgrade-texlive-hyphenexoracle-linux-upgrade-texlive-hyph-utf8oracle-linux-upgrade-texlive-ifetexoracle-linux-upgrade-texlive-ifluatexoracle-linux-upgrade-texlive-ifmtargoracle-linux-upgrade-texlive-ifoddpageoracle-linux-upgrade-texlive-ifplatformoracle-linux-upgrade-texlive-iftexoracle-linux-upgrade-texlive-ifxetexoracle-linux-upgrade-texlive-importoracle-linux-upgrade-texlive-indexoracle-linux-upgrade-texlive-infwarerroracle-linux-upgrade-texlive-intcalcoracle-linux-upgrade-texlive-jadetexoracle-linux-upgrade-texlive-jknapltxoracle-linux-upgrade-texlive-kastruporacle-linux-upgrade-texlive-kerkisoracle-linux-upgrade-texlive-knuth-liboracle-linux-upgrade-texlive-knuth-localoracle-linux-upgrade-texlive-koma-scriptoracle-linux-upgrade-texlive-kpathseaoracle-linux-upgrade-texlive-kvdefinekeysoracle-linux-upgrade-texlive-kvoptionsoracle-linux-upgrade-texlive-kvsetkeysoracle-linux-upgrade-texlive-l3backendoracle-linux-upgrade-texlive-l3experimentaloracle-linux-upgrade-texlive-l3kerneloracle-linux-upgrade-texlive-l3packagesoracle-linux-upgrade-texlive-lastpageoracle-linux-upgrade-texlive-latexoracle-linux-upgrade-texlive-latex2manoracle-linux-upgrade-texlive-latexbugoracle-linux-upgrade-texlive-latexconfigoracle-linux-upgrade-texlive-latex-fontsoracle-linux-upgrade-texlive-letltxmacrooracle-linux-upgrade-texlive-lettrineoracle-linux-upgrade-texlive-liboracle-linux-upgrade-texlive-lib-develoracle-linux-upgrade-texlive-linegoaloracle-linux-upgrade-texlive-linenooracle-linux-upgrade-texlive-listingsoracle-linux-upgrade-texlive-listofitemsoracle-linux-upgrade-texlive-lmoracle-linux-upgrade-texlive-lm-mathoracle-linux-upgrade-texlive-ltabptchoracle-linux-upgrade-texlive-ltxcmdsoracle-linux-upgrade-texlive-ltxmiscoracle-linux-upgrade-texlive-lua-alt-getoptoracle-linux-upgrade-texlive-luahbtexoracle-linux-upgrade-texlive-lualatex-mathoracle-linux-upgrade-texlive-lualibsoracle-linux-upgrade-texlive-luaotfloadoracle-linux-upgrade-texlive-luatexoracle-linux-upgrade-texlive-luatex85oracle-linux-upgrade-texlive-luatexbaseoracle-linux-upgrade-texlive-lwarporacle-linux-upgrade-texlive-makecmdsoracle-linux-upgrade-texlive-makeindexoracle-linux-upgrade-texlive-manfnt-fontoracle-linux-upgrade-texlive-marginnoteoracle-linux-upgrade-texlive-marvosymoracle-linux-upgrade-texlive-mathpazooracle-linux-upgrade-texlive-mathspecoracle-linux-upgrade-texlive-mathtoolsoracle-linux-upgrade-texlive-mdwtoolsoracle-linux-upgrade-texlive-memoiroracle-linux-upgrade-texlive-metafontoracle-linux-upgrade-texlive-metalogooracle-linux-upgrade-texlive-metapostoracle-linux-upgrade-texlive-mflogooracle-linux-upgrade-texlive-mflogo-fontoracle-linux-upgrade-texlive-mfnfssoracle-linux-upgrade-texlive-mfwareoracle-linux-upgrade-texlive-microtypeoracle-linux-upgrade-texlive-minitocoracle-linux-upgrade-texlive-mnsymboloracle-linux-upgrade-texlive-modesoracle-linux-upgrade-texlive-mparhackoracle-linux-upgrade-texlive-mptopdforacle-linux-upgrade-texlive-msoracle-linux-upgrade-texlive-multidooracle-linux-upgrade-texlive-multiroworacle-linux-upgrade-texlive-natbiboracle-linux-upgrade-texlive-ncctoolsoracle-linux-upgrade-texlive-ncntrsbkoracle-linux-upgrade-texlive-needspaceoracle-linux-upgrade-texlive-newfloatoracle-linux-upgrade-texlive-newunicodecharoracle-linux-upgrade-texlive-norasi-c90oracle-linux-upgrade-texlive-notocciteoracle-linux-upgrade-texlive-ntgclassoracle-linux-upgrade-texlive-oberdiekoracle-linux-upgrade-texlive-obsoleteoracle-linux-upgrade-texlive-overpicoracle-linux-upgrade-texlive-palatinooracle-linux-upgrade-texlive-paralistoracle-linux-upgrade-texlive-paralleloracle-linux-upgrade-texlive-parskiporacle-linux-upgrade-texlive-passivetexoracle-linux-upgrade-texlive-pdfcolmkoracle-linux-upgrade-texlive-pdfescapeoracle-linux-upgrade-texlive-pdflscapeoracle-linux-upgrade-texlive-pdfpagesoracle-linux-upgrade-texlive-pdftexoracle-linux-upgrade-texlive-pdftexcmdsoracle-linux-upgrade-texlive-pgforacle-linux-upgrade-texlive-philokaliaoracle-linux-upgrade-texlive-placeinsoracle-linux-upgrade-texlive-plainoracle-linux-upgrade-texlive-polyglossiaoracle-linux-upgrade-texlive-powerdotoracle-linux-upgrade-texlive-preprintoracle-linux-upgrade-texlive-psfragoracle-linux-upgrade-texlive-pslatexoracle-linux-upgrade-texlive-psnfssoracle-linux-upgrade-texlive-pspictureoracle-linux-upgrade-texlive-pst-3doracle-linux-upgrade-texlive-pst-arroworacle-linux-upgrade-texlive-pst-bluroracle-linux-upgrade-texlive-pst-coiloracle-linux-upgrade-texlive-pst-epsoracle-linux-upgrade-texlive-pst-filloracle-linux-upgrade-texlive-pst-gradoracle-linux-upgrade-texlive-pst-mathoracle-linux-upgrade-texlive-pst-nodeoracle-linux-upgrade-texlive-pst-plotoracle-linux-upgrade-texlive-pstricksoracle-linux-upgrade-texlive-pstricks-addoracle-linux-upgrade-texlive-pst-slpeoracle-linux-upgrade-texlive-pst-textoracle-linux-upgrade-texlive-pst-toolsoracle-linux-upgrade-texlive-pst-treeoracle-linux-upgrade-texlive-ptextoracle-linux-upgrade-texlive-pxfontsoracle-linux-upgrade-texlive-qstestoracle-linux-upgrade-texlive-ragged2eoracle-linux-upgrade-texlive-rcsoracle-linux-upgrade-texlive-realscriptsoracle-linux-upgrade-texlive-refcountoracle-linux-upgrade-texlive-rerunfilecheckoracle-linux-upgrade-texlive-rsfsoracle-linux-upgrade-texlive-sansmathoracle-linux-upgrade-texlive-sansmathaccentoracle-linux-upgrade-texlive-sauerjoracle-linux-upgrade-texlive-scheme-basicoracle-linux-upgrade-texlive-sectionoracle-linux-upgrade-texlive-sectstyoracle-linux-upgrade-texlive-seminaroracle-linux-upgrade-texlive-sepnumoracle-linux-upgrade-texlive-setspaceoracle-linux-upgrade-texlive-showexploracle-linux-upgrade-texlive-souloracle-linux-upgrade-texlive-stackengineoracle-linux-upgrade-texlive-stmaryrdoracle-linux-upgrade-texlive-stringencoracle-linux-upgrade-texlive-subfigoracle-linux-upgrade-texlive-subfigureoracle-linux-upgrade-texlive-svn-provoracle-linux-upgrade-texlive-symboloracle-linux-upgrade-texlive-t2oracle-linux-upgrade-texlive-tabuoracle-linux-upgrade-texlive-tabularyoracle-linux-upgrade-texlive-tetexoracle-linux-upgrade-texlive-texoracle-linux-upgrade-texlive-tex4htoracle-linux-upgrade-texlive-texconfigoracle-linux-upgrade-texlive-tex-gyreoracle-linux-upgrade-texlive-tex-gyre-mathoracle-linux-upgrade-texlive-tex-ini-filesoracle-linux-upgrade-texlive-texlive-common-docoracle-linux-upgrade-texlive-texlive-docindexoracle-linux-upgrade-texlive-texlive-enoracle-linux-upgrade-texlive-texlive-infraoracle-linux-upgrade-texlive-texlive-msg-translationsoracle-linux-upgrade-texlive-texlive-scriptsoracle-linux-upgrade-texlive-texlive-scripts-extraoracle-linux-upgrade-texlive-textcaseoracle-linux-upgrade-texlive-textposoracle-linux-upgrade-texlive-threeparttableoracle-linux-upgrade-texlive-thumbpdforacle-linux-upgrade-texlive-timesoracle-linux-upgrade-texlive-tipaoracle-linux-upgrade-texlive-titlesecoracle-linux-upgrade-texlive-titlingoracle-linux-upgrade-texlive-tocloftoracle-linux-upgrade-texlive-toolsoracle-linux-upgrade-texlive-translatororacle-linux-upgrade-texlive-trimspacesoracle-linux-upgrade-texlive-txfontsoracle-linux-upgrade-texlive-type1cmoracle-linux-upgrade-texlive-typehtmloracle-linux-upgrade-texlive-ucharcatoracle-linux-upgrade-texlive-ucharclassesoracle-linux-upgrade-texlive-ucsoracle-linux-upgrade-texlive-uhcoracle-linux-upgrade-texlive-ulemoracle-linux-upgrade-texlive-underscoreoracle-linux-upgrade-texlive-unicode-dataoracle-linux-upgrade-texlive-unicode-mathoracle-linux-upgrade-texlive-uniquecounteroracle-linux-upgrade-texlive-unisugaroracle-linux-upgrade-texlive-updmap-maporacle-linux-upgrade-texlive-upquoteoracle-linux-upgrade-texlive-urloracle-linux-upgrade-texlive-utopiaoracle-linux-upgrade-texlive-varwidthoracle-linux-upgrade-texlive-wadalaboracle-linux-upgrade-texlive-wasoracle-linux-upgrade-texlive-wasyoracle-linux-upgrade-texlive-wasy2-psoracle-linux-upgrade-texlive-wasysymoracle-linux-upgrade-texlive-wasy-type1oracle-linux-upgrade-texlive-wrapfigoracle-linux-upgrade-texlive-xcolororacle-linux-upgrade-texlive-xdvioracle-linux-upgrade-texlive-xecjkoracle-linux-upgrade-texlive-xecolororacle-linux-upgrade-texlive-xecyroracle-linux-upgrade-texlive-xeindexoracle-linux-upgrade-texlive-xepersianoracle-linux-upgrade-texlive-xesearchoracle-linux-upgrade-texlive-xetexoracle-linux-upgrade-texlive-xetexconfigoracle-linux-upgrade-texlive-xetexfontinfooracle-linux-upgrade-texlive-xetex-itransoracle-linux-upgrade-texlive-xetex-pstricksoracle-linux-upgrade-texlive-xetex-tibetanoracle-linux-upgrade-texlive-xifthenoracle-linux-upgrade-texlive-xkeyvaloracle-linux-upgrade-texlive-xltxtraoracle-linux-upgrade-texlive-xmltexoracle-linux-upgrade-texlive-xmltexconfigoracle-linux-upgrade-texlive-xstringoracle-linux-upgrade-texlive-xtaboracle-linux-upgrade-texlive-xunicodeoracle-linux-upgrade-texlive-zapfchanoracle-linux-upgrade-texlive-zapfdingoracle-linux-upgrade-texlive-zref
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.