VYPR
Medium severity6.1NVD Advisory· Published Aug 25, 2017· Updated Jun 17, 2026

CVE-2015-5701

CVE-2015-5701

Description

mktexlsr revision 36855, and before revision 36626 as packaged in texlive allows local users to write to arbitrary files via a symlink attack. NOTE: this vulnerability exists due to the reversion of a fix of CVE-2015-5700.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • Tug/Texlive5 versions
    cpe:2.3:a:tug:texlive:20100722:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:tug:texlive:20100722:*:*:*:*:*:*:*
    • cpe:2.3:a:tug:texlive:20110705:*:*:*:*:*:*:*
    • cpe:2.3:a:tug:texlive:20120701:*:*:*:*:*:*:*
    • cpe:2.3:a:tug:texlive:20130530:*:*:*:*:*:*:*
    • cpe:2.3:a:tug:texlive:20140525:*:*:*:*:*:*:*
  • TeXLive/mktexlsrllm-fuzzy
    Range: <36855, <36626

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.