VYPR
Medium severity4.7NVD Advisory· Published Oct 6, 2017· Updated Jun 17, 2026

CVE-2015-0296

CVE-2015-0296

Description

The pre-install script in texlive 3.1.20140525_r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226_r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Tug/Texlive2 versions
    cpe:2.3:a:tug:texlive:3.1.20140525_r34255.fc21:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:tug:texlive:3.1.20140525_r34255.fc21:*:*:*:*:*:*:*
    • cpe:2.3:a:tug:texlive:6.20131226_r32488.fc20:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.