There are 5 open security issues in bookworm.
5 issues left for the package maintainer to handle:
- CVE-2023-51885:
(needs triaging)
Buffer Overflow vulnerability in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via the length of the LaTeX string component.
- CVE-2023-51886:
(needs triaging)
Buffer Overflow vulnerability in the main() function in Mathtex 1.05 and before allows a remote attacker to cause a denial of service when using \convertpath.
- CVE-2023-51887:
(needs triaging)
Command Injection vulnerability in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in application URL.
- CVE-2023-51888:
(needs triaging)
Buffer Overflow vulnerability in the nomath() function in Mathtex v.1.05 and before allows a remote attacker to cause a denial of service via a crafted string in the application URL.
- CVE-2023-51889:
(needs triaging)
Stack Overflow vulnerability in the validate() function in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in the application URL.
You can find information about how to handle these issues in the security team's documentation.