vulnerability

Red Hat: CVE-2023-32700: arbitrary code execution allows document complied with older version (Multiple Advisories)

Severity
7
CVSS
(AV:L/AC:M/Au:N/C:C/I:C/A:C)
Published
2023-05-20
Added
2023-06-20
Modified
2025-01-28

Description

LuaTeX before 1.17.0 allows execution of arbitrary shell commands when compiling a TeX file obtained from an untrusted source. This occurs because luatex-core.lua lets the original io.popen be accessed. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5.

Solution(s)

redhat-upgrade-texliveredhat-upgrade-texlive-adjustboxredhat-upgrade-texlive-aeredhat-upgrade-texlive-algorithmsredhat-upgrade-texlive-alphalphredhat-upgrade-texlive-amsclsredhat-upgrade-texlive-amsfontsredhat-upgrade-texlive-amsmathredhat-upgrade-texlive-anyfontsizeredhat-upgrade-texlive-anysizeredhat-upgrade-texlive-appendixredhat-upgrade-texlive-arabxetexredhat-upgrade-texlive-arphicredhat-upgrade-texlive-atbegshiredhat-upgrade-texlive-attachfileredhat-upgrade-texlive-attachfile2redhat-upgrade-texlive-atveryendredhat-upgrade-texlive-auxhookredhat-upgrade-texlive-avantgarredhat-upgrade-texlive-awesomeboxredhat-upgrade-texlive-babelredhat-upgrade-texlive-babel-englishredhat-upgrade-texlive-babelbibredhat-upgrade-texlive-baseredhat-upgrade-texlive-beamerredhat-upgrade-texlive-beraredhat-upgrade-texlive-betonredhat-upgrade-texlive-bibtexredhat-upgrade-texlive-bibtex-debuginforedhat-upgrade-texlive-bibtopicredhat-upgrade-texlive-bidiredhat-upgrade-texlive-bigfootredhat-upgrade-texlive-bigintcalcredhat-upgrade-texlive-bitsetredhat-upgrade-texlive-bookmanredhat-upgrade-texlive-bookmarkredhat-upgrade-texlive-booktabsredhat-upgrade-texlive-breakurlredhat-upgrade-texlive-breqnredhat-upgrade-texlive-capt-ofredhat-upgrade-texlive-captionredhat-upgrade-texlive-carlisleredhat-upgrade-texlive-catchfileredhat-upgrade-texlive-changebarredhat-upgrade-texlive-changepageredhat-upgrade-texlive-charterredhat-upgrade-texlive-chngcntrredhat-upgrade-texlive-citeredhat-upgrade-texlive-cjkredhat-upgrade-texlive-classpackredhat-upgrade-texlive-cmredhat-upgrade-texlive-cm-lgcredhat-upgrade-texlive-cm-superredhat-upgrade-texlive-cmapredhat-upgrade-texlive-cmextraredhat-upgrade-texlive-cnsredhat-upgrade-texlive-collectboxredhat-upgrade-texlive-collection-basicredhat-upgrade-texlive-collection-fontsrecommendedredhat-upgrade-texlive-collection-htmlxmlredhat-upgrade-texlive-collection-latexredhat-upgrade-texlive-collection-latexrecommendedredhat-upgrade-texlive-collection-xetexredhat-upgrade-texlive-colorprofilesredhat-upgrade-texlive-colortblredhat-upgrade-texlive-contextredhat-upgrade-texlive-courierredhat-upgrade-texlive-cropredhat-upgrade-texlive-csquotesredhat-upgrade-texlive-ctableredhat-upgrade-texlive-ctablestackredhat-upgrade-texlive-currfileredhat-upgrade-texlive-datetimeredhat-upgrade-texlive-debuginforedhat-upgrade-texlive-debugsourceredhat-upgrade-texlive-dehyphredhat-upgrade-texlive-dvipdfmxredhat-upgrade-texlive-dvipngredhat-upgrade-texlive-dvipng-debuginforedhat-upgrade-texlive-dvipsredhat-upgrade-texlive-dvips-debuginforedhat-upgrade-texlive-dvisvgmredhat-upgrade-texlive-dvisvgm-debuginforedhat-upgrade-texlive-ecredhat-upgrade-texlive-eepicredhat-upgrade-texlive-enctexredhat-upgrade-texlive-enumitemredhat-upgrade-texlive-environredhat-upgrade-texlive-epsfredhat-upgrade-texlive-epstopdfredhat-upgrade-texlive-epstopdf-pkgredhat-upgrade-texlive-eqparboxredhat-upgrade-texlive-eso-picredhat-upgrade-texlive-etexredhat-upgrade-texlive-etex-pkgredhat-upgrade-texlive-etexcmdsredhat-upgrade-texlive-etocredhat-upgrade-texlive-etoolboxredhat-upgrade-texlive-euencredhat-upgrade-texlive-eulerredhat-upgrade-texlive-euroredhat-upgrade-texlive-eurosymredhat-upgrade-texlive-extsizesredhat-upgrade-texlive-fancyboxredhat-upgrade-texlive-fancyhdrredhat-upgrade-texlive-fancyrefredhat-upgrade-texlive-fancyvrbredhat-upgrade-texlive-filecontentsredhat-upgrade-texlive-filehookredhat-upgrade-texlive-finstrutredhat-upgrade-texlive-fix2colredhat-upgrade-texlive-fixlatvianredhat-upgrade-texlive-floatredhat-upgrade-texlive-fmtcountredhat-upgrade-texlive-fncychapredhat-upgrade-texlive-fontawesomeredhat-upgrade-texlive-fontbookredhat-upgrade-texlive-fonts-tlwgredhat-upgrade-texlive-fontspecredhat-upgrade-texlive-fontwareredhat-upgrade-texlive-fontware-debuginforedhat-upgrade-texlive-fontwrapredhat-upgrade-texlive-footmiscredhat-upgrade-texlive-footnotehyperredhat-upgrade-texlive-fpredhat-upgrade-texlive-fplredhat-upgrade-texlive-framedredhat-upgrade-texlive-garuda-c90redhat-upgrade-texlive-geometryredhat-upgrade-texlive-gettitlestringredhat-upgrade-texlive-glyphlistredhat-upgrade-texlive-gnu-freefontredhat-upgrade-texlive-graphicsredhat-upgrade-texlive-graphics-cfgredhat-upgrade-texlive-graphics-defredhat-upgrade-texlive-grfextredhat-upgrade-texlive-grffileredhat-upgrade-texlive-gsftopkredhat-upgrade-texlive-gsftopk-debuginforedhat-upgrade-texlive-hangingredhat-upgrade-texlive-helveticredhat-upgrade-texlive-hobsubredhat-upgrade-texlive-hologoredhat-upgrade-texlive-hycolorredhat-upgrade-texlive-hyperrefredhat-upgrade-texlive-hyph-utf8redhat-upgrade-texlive-hyphen-baseredhat-upgrade-texlive-hyphenatredhat-upgrade-texlive-hyphenexredhat-upgrade-texlive-ifetexredhat-upgrade-texlive-ifluatexredhat-upgrade-texlive-ifmtargredhat-upgrade-texlive-ifoddpageredhat-upgrade-texlive-ifplatformredhat-upgrade-texlive-iftexredhat-upgrade-texlive-ifxetexredhat-upgrade-texlive-importredhat-upgrade-texlive-indexredhat-upgrade-texlive-infwarerrredhat-upgrade-texlive-intcalcredhat-upgrade-texlive-jadetexredhat-upgrade-texlive-jknapltxredhat-upgrade-texlive-kastrupredhat-upgrade-texlive-kerkisredhat-upgrade-texlive-knuth-libredhat-upgrade-texlive-knuth-localredhat-upgrade-texlive-koma-scriptredhat-upgrade-texlive-kpathsearedhat-upgrade-texlive-kpathsea-debuginforedhat-upgrade-texlive-kvdefinekeysredhat-upgrade-texlive-kvoptionsredhat-upgrade-texlive-kvsetkeysredhat-upgrade-texlive-l3backendredhat-upgrade-texlive-l3experimentalredhat-upgrade-texlive-l3kernelredhat-upgrade-texlive-l3packagesredhat-upgrade-texlive-lastpageredhat-upgrade-texlive-latexredhat-upgrade-texlive-latex-fontsredhat-upgrade-texlive-latex2manredhat-upgrade-texlive-latexbugredhat-upgrade-texlive-latexconfigredhat-upgrade-texlive-letltxmacroredhat-upgrade-texlive-lettrineredhat-upgrade-texlive-libredhat-upgrade-texlive-lib-debuginforedhat-upgrade-texlive-lib-develredhat-upgrade-texlive-linegoalredhat-upgrade-texlive-linenoredhat-upgrade-texlive-listingsredhat-upgrade-texlive-listofitemsredhat-upgrade-texlive-lmredhat-upgrade-texlive-lm-mathredhat-upgrade-texlive-ltabptchredhat-upgrade-texlive-ltxcmdsredhat-upgrade-texlive-ltxmiscredhat-upgrade-texlive-lua-alt-getoptredhat-upgrade-texlive-luahbtexredhat-upgrade-texlive-luahbtex-debuginforedhat-upgrade-texlive-luajittex-debuginforedhat-upgrade-texlive-lualatex-mathredhat-upgrade-texlive-lualibsredhat-upgrade-texlive-luaotfloadredhat-upgrade-texlive-luatexredhat-upgrade-texlive-luatex-debuginforedhat-upgrade-texlive-luatex85redhat-upgrade-texlive-luatexbaseredhat-upgrade-texlive-lwarpredhat-upgrade-texlive-makecmdsredhat-upgrade-texlive-makeindexredhat-upgrade-texlive-makeindex-debuginforedhat-upgrade-texlive-manfnt-fontredhat-upgrade-texlive-marginnoteredhat-upgrade-texlive-marvosymredhat-upgrade-texlive-mathpazoredhat-upgrade-texlive-mathspecredhat-upgrade-texlive-mathtoolsredhat-upgrade-texlive-mdwtoolsredhat-upgrade-texlive-memoirredhat-upgrade-texlive-metafontredhat-upgrade-texlive-metafont-debuginforedhat-upgrade-texlive-metalogoredhat-upgrade-texlive-metapostredhat-upgrade-texlive-metapost-debuginforedhat-upgrade-texlive-mflogoredhat-upgrade-texlive-mflogo-fontredhat-upgrade-texlive-mfnfssredhat-upgrade-texlive-mfwareredhat-upgrade-texlive-mfware-debuginforedhat-upgrade-texlive-microtyperedhat-upgrade-texlive-minitocredhat-upgrade-texlive-mnsymbolredhat-upgrade-texlive-modesredhat-upgrade-texlive-mparhackredhat-upgrade-texlive-mptopdfredhat-upgrade-texlive-msredhat-upgrade-texlive-multidoredhat-upgrade-texlive-multirowredhat-upgrade-texlive-natbibredhat-upgrade-texlive-ncctoolsredhat-upgrade-texlive-ncntrsbkredhat-upgrade-texlive-needspaceredhat-upgrade-texlive-newfloatredhat-upgrade-texlive-newunicodecharredhat-upgrade-texlive-norasi-c90redhat-upgrade-texlive-notocciteredhat-upgrade-texlive-ntgclassredhat-upgrade-texlive-oberdiekredhat-upgrade-texlive-obsoleteredhat-upgrade-texlive-overpicredhat-upgrade-texlive-palatinoredhat-upgrade-texlive-paralistredhat-upgrade-texlive-parallelredhat-upgrade-texlive-parskipredhat-upgrade-texlive-passivetexredhat-upgrade-texlive-pdfcolmkredhat-upgrade-texlive-pdfescaperedhat-upgrade-texlive-pdflscaperedhat-upgrade-texlive-pdfpagesredhat-upgrade-texlive-pdftexredhat-upgrade-texlive-pdftex-debuginforedhat-upgrade-texlive-pdftexcmdsredhat-upgrade-texlive-pgfredhat-upgrade-texlive-philokaliaredhat-upgrade-texlive-placeinsredhat-upgrade-texlive-plainredhat-upgrade-texlive-polyglossiaredhat-upgrade-texlive-powerdotredhat-upgrade-texlive-preprintredhat-upgrade-texlive-psfragredhat-upgrade-texlive-pslatexredhat-upgrade-texlive-psnfssredhat-upgrade-texlive-pspictureredhat-upgrade-texlive-pst-3dredhat-upgrade-texlive-pst-arrowredhat-upgrade-texlive-pst-blurredhat-upgrade-texlive-pst-coilredhat-upgrade-texlive-pst-epsredhat-upgrade-texlive-pst-fillredhat-upgrade-texlive-pst-gradredhat-upgrade-texlive-pst-mathredhat-upgrade-texlive-pst-noderedhat-upgrade-texlive-pst-plotredhat-upgrade-texlive-pst-slperedhat-upgrade-texlive-pst-textredhat-upgrade-texlive-pst-toolsredhat-upgrade-texlive-pst-treeredhat-upgrade-texlive-pstricksredhat-upgrade-texlive-pstricks-addredhat-upgrade-texlive-ptextredhat-upgrade-texlive-pxfontsredhat-upgrade-texlive-qstestredhat-upgrade-texlive-ragged2eredhat-upgrade-texlive-rcsredhat-upgrade-texlive-realscriptsredhat-upgrade-texlive-refcountredhat-upgrade-texlive-rerunfilecheckredhat-upgrade-texlive-rsfsredhat-upgrade-texlive-sansmathredhat-upgrade-texlive-sansmathaccentredhat-upgrade-texlive-sauerjredhat-upgrade-texlive-scheme-basicredhat-upgrade-texlive-sectionredhat-upgrade-texlive-sectstyredhat-upgrade-texlive-seminarredhat-upgrade-texlive-sepnumredhat-upgrade-texlive-setspaceredhat-upgrade-texlive-showexplredhat-upgrade-texlive-soulredhat-upgrade-texlive-stackengineredhat-upgrade-texlive-stmaryrdredhat-upgrade-texlive-stringencredhat-upgrade-texlive-subfigredhat-upgrade-texlive-subfigureredhat-upgrade-texlive-svn-provredhat-upgrade-texlive-symbolredhat-upgrade-texlive-t2redhat-upgrade-texlive-taburedhat-upgrade-texlive-tabularyredhat-upgrade-texlive-tetexredhat-upgrade-texlive-texredhat-upgrade-texlive-tex-debuginforedhat-upgrade-texlive-tex-gyreredhat-upgrade-texlive-tex-gyre-mathredhat-upgrade-texlive-tex-ini-filesredhat-upgrade-texlive-tex4htredhat-upgrade-texlive-tex4ht-debuginforedhat-upgrade-texlive-texconfigredhat-upgrade-texlive-texlive-common-docredhat-upgrade-texlive-texlive-docindexredhat-upgrade-texlive-texlive-enredhat-upgrade-texlive-texlive-infraredhat-upgrade-texlive-texlive-msg-translationsredhat-upgrade-texlive-texlive-scriptsredhat-upgrade-texlive-texlive-scripts-extraredhat-upgrade-texlive-textcaseredhat-upgrade-texlive-textposredhat-upgrade-texlive-threeparttableredhat-upgrade-texlive-thumbpdfredhat-upgrade-texlive-timesredhat-upgrade-texlive-tiparedhat-upgrade-texlive-titlesecredhat-upgrade-texlive-titlingredhat-upgrade-texlive-tocloftredhat-upgrade-texlive-toolsredhat-upgrade-texlive-translatorredhat-upgrade-texlive-trimspacesredhat-upgrade-texlive-txfontsredhat-upgrade-texlive-type1cmredhat-upgrade-texlive-typehtmlredhat-upgrade-texlive-ucharcatredhat-upgrade-texlive-ucharclassesredhat-upgrade-texlive-ucsredhat-upgrade-texlive-uhcredhat-upgrade-texlive-ulemredhat-upgrade-texlive-underscoreredhat-upgrade-texlive-unicode-dataredhat-upgrade-texlive-unicode-mathredhat-upgrade-texlive-uniquecounterredhat-upgrade-texlive-unisugarredhat-upgrade-texlive-updmap-mapredhat-upgrade-texlive-upquoteredhat-upgrade-texlive-urlredhat-upgrade-texlive-utopiaredhat-upgrade-texlive-varwidthredhat-upgrade-texlive-wadalabredhat-upgrade-texlive-wasredhat-upgrade-texlive-wasyredhat-upgrade-texlive-wasy-type1redhat-upgrade-texlive-wasy2-psredhat-upgrade-texlive-wasysymredhat-upgrade-texlive-wrapfigredhat-upgrade-texlive-xcolorredhat-upgrade-texlive-xdviredhat-upgrade-texlive-xdvi-debuginforedhat-upgrade-texlive-xecjkredhat-upgrade-texlive-xecolorredhat-upgrade-texlive-xecyrredhat-upgrade-texlive-xeindexredhat-upgrade-texlive-xepersianredhat-upgrade-texlive-xesearchredhat-upgrade-texlive-xetexredhat-upgrade-texlive-xetex-debuginforedhat-upgrade-texlive-xetex-itransredhat-upgrade-texlive-xetex-pstricksredhat-upgrade-texlive-xetex-tibetanredhat-upgrade-texlive-xetexconfigredhat-upgrade-texlive-xetexfontinforedhat-upgrade-texlive-xifthenredhat-upgrade-texlive-xkeyvalredhat-upgrade-texlive-xltxtraredhat-upgrade-texlive-xmltexredhat-upgrade-texlive-xmltexconfigredhat-upgrade-texlive-xstringredhat-upgrade-texlive-xtabredhat-upgrade-texlive-xunicoderedhat-upgrade-texlive-zapfchanredhat-upgrade-texlive-zapfdingredhat-upgrade-texlive-zref
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.