Fluid Attacks Database

Description

OpenDetex 2.8.5 has a Buffer Overflow in TexOpen in detex.l because of an incorrect sprintf.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version
debian 11	texlive-bin	=2020.20200327.54578-7 \|\| =2020.20200327.54578-7+deb11u1 \|\| =2020.20200327.54578-7+deb11u2 \|\| =2021.20210626.59705-1 \|\| =2022.20220321.62855-1 \|\| =2022.20220321.62855-2 \|\| =2022.20220321.62855-3 \|\| =2022.20220321.62855-4 \|\| =2022.20220321.62855-5 \|\| =2022.20220321.62855-5.1 \|\| =2022.20220321.62855-6 \|\| =2022.20220321.62855-7 \|\| =2022.20220321.62855-8 \|\| =2023.20230311.66589-1 \|\| =2023.20230311.66589-2 \|\| =2023.20230311.66589-3 \|\| =2023.20230311.66589-4 \|\| =2023.20230311.66589-5 \|\| =2023.20230311.66589-6 \|\| =2023.20230311.66589-7 \|\| =2023.20230311.66589-8 \|\| =2023.20230311.66589-9 \|\| =2024.20240313.70630+ds-1 \|\| =2024.20240313.70630+ds-2 \|\| =2024.20240313.70630+ds-3 \|\| =2024.20240313.70630+ds-4 \|\| =2024.20240313.70630+ds-5 \|\| =2024.20240313.70630+ds-6 \|\| =2025.20250727.75242+ds-1 \|\| =2025.20250727.75242+ds-2 \|\| =2025.20250727.75242+ds-3 \|\| =2025.20250727.75242+ds-4 \|\| =2025.20250727.75242+ds-5 \|\| =2025.20250727.75242+ds-5~hurd.1 \|\| =2026.20260303.78225+ds-1 \|\| =2026.20260303.78225+ds-2 \|\| =2026.20260303.78225+ds-3
debian 12	texlive-bin	=2022.20220321.62855-5.1 \|\| =2022.20220321.62855-5.1+deb12u1 \|\| =2022.20220321.62855-5.1+deb12u2 \|\| =2022.20220321.62855-6 \|\| =2022.20220321.62855-7 \|\| =2022.20220321.62855-8 \|\| =2023.20230311.66589-1 \|\| =2023.20230311.66589-2 \|\| =2023.20230311.66589-3 \|\| =2023.20230311.66589-4 \|\| =2023.20230311.66589-5 \|\| =2023.20230311.66589-6 \|\| =2023.20230311.66589-7 \|\| =2023.20230311.66589-8 \|\| =2023.20230311.66589-9 \|\| =2024.20240313.70630+ds-1 \|\| =2024.20240313.70630+ds-2 \|\| =2024.20240313.70630+ds-3 \|\| =2024.20240313.70630+ds-4 \|\| =2024.20240313.70630+ds-5 \|\| =2024.20240313.70630+ds-6 \|\| =2025.20250727.75242+ds-1 \|\| =2025.20250727.75242+ds-2 \|\| =2025.20250727.75242+ds-3 \|\| =2025.20250727.75242+ds-4 \|\| =2025.20250727.75242+ds-5 \|\| =2025.20250727.75242+ds-5~hurd.1 \|\| =2026.20260303.78225+ds-1 \|\| =2026.20260303.78225+ds-2 \|\| =2026.20260303.78225+ds-3
debian 13	texlive-bin	=2024.20240313.70630+ds-6 \|\| =2025.20250727.75242+ds-1 \|\| =2025.20250727.75242+ds-2 \|\| =2025.20250727.75242+ds-3 \|\| =2025.20250727.75242+ds-4 \|\| =2025.20250727.75242+ds-5 \|\| =2025.20250727.75242+ds-5~hurd.1 \|\| =2026.20260303.78225+ds-1 \|\| =2026.20260303.78225+ds-2 \|\| =2026.20260303.78225+ds-3
debian 14	texlive-bin	=2024.20240313.70630+ds-6 \|\| =2025.20250727.75242+ds-1 \|\| =2025.20250727.75242+ds-2 \|\| =2025.20250727.75242+ds-3 \|\| =2025.20250727.75242+ds-4 \|\| =2025.20250727.75242+ds-5 \|\| =2025.20250727.75242+ds-5~hurd.1 \|\| =2026.20260303.78225+ds-1 \|\| =2026.20260303.78225+ds-2 \|\| =2026.20260303.78225+ds-3

Aliases

1. CVE-2019-196012. NVD-2019-196013. OSV-DEBIAN-2019-196014. OSV-2019-196015. SECURITY-TRACKER-CVE-2019-19601

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.