Format string error in LaTeX2rtf and Fedora - CVE-2015-8106
Published: April 18, 2016 / Updated: August 9, 2020
Vulnerability identifier: #VU40343
CSH Severity: High
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber
CVE-ID: CVE-2015-8106
CWE-ID: CWE-134
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: latex2rtf.sourceforge.net
Fedoraproject
Fedoraproject
Affected software:
LaTeX2rtf
Fedora
LaTeX2rtf
Fedora
Detailed vulnerability description
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
Format string vulnerability in the CmdKeywords function in funct1.c in latex2rtf before 2.3.10 allows remote attackers to execute arbitrary code via format string specifiers in the keywords command in a crafted TeX file.
How to mitigate CVE-2015-8106
Install update from vendor's website.
Sources
- http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181276.html
- http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181677.html
- http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181725.html
- http://www.openwall.com/lists/oss-security/2015/11/16/3
- https://bugzilla.redhat.com/show_bug.cgi?id=1282492
- https://sourceforge.net/p/latex2rtf/code/1244/