CVE-2016-10243

TeX Live allows remote attackers to execute arbitrary commands by leveraging inclusion of mpost in shell_escape_commands in the texmf.cnf config file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 93%
Affected Products (NVD)
VendorProductVersion
debiandebian_linux
7.0
debiandebian_linux
8.0
tugtex_live
-
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
texlive-base
bookworm
2022.20230122-3
fixed
bullseye
2020.20210202-3
fixed
sid
2024.20241102-1
fixed
trixie
2024.20240829-2
fixed
texlive-bin
bookworm
2022.20220321.62855-5.1+deb12u1
fixed
bullseye
2020.20200327.54578-7+deb11u1
fixed
bullseye (security)
2020.20200327.54578-7+deb11u2
fixed
sid
2024.20240313.70630+ds-5
fixed
trixie
2024.20240313.70630+ds-4
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
texlive-base
artful
not-affected
precise
ignored
trusty
Fixed 2013.20140215-1ubuntu0.1
released
xenial
Fixed 2015.20160320-1ubuntu0.1
released
yakkety
ignored
zesty
not-affected
texlive-bin
artful
not-affected
precise
ignored
trusty
dne
xenial
not-affected
yakkety
ignored
zesty
not-affected
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libkpathsea6
suse enterprise desktop 15
6.2.3-9.35
fixed
suse enterprise desktop 15 SP1
6.2.3-11.8.4
fixed
suse enterprise desktop 15 SP2
6.2.3-19.4
fixed
suse enterprise desktop 15 SP3
6.2.3-19.4
fixed
suse enterprise desktop 15 SP4
6.3.3-150400.29.15
fixed
suse enterprise desktop 15 SP5
6.3.3-150400.29.15
fixed
suse enterprise desktop 15 SP6
6.3.3-150600.36.10
fixed
suse enterprise desktop 15 SP7
6.3.3-150600.36.10
fixed
suse enterprise sap 15
6.2.3-9.35
fixed
suse enterprise sap 15 SP1
6.2.3-11.8.4
fixed
suse enterprise sap 15 SP2
6.2.3-19.4
fixed
suse enterprise sap 15 SP3
6.2.3-19.4
fixed
suse enterprise sap 15 SP4
6.3.3-150400.29.15
fixed
suse enterprise sap 15 SP5
6.3.3-150400.29.15
fixed
suse enterprise sap 15 SP6
6.3.3-150600.36.10
fixed
suse enterprise sap 15 SP7
6.3.3-150600.36.10
fixed
suse enterprise server 15
6.2.3-9.35
fixed
suse enterprise server 15 SP1
6.2.3-11.8.4
fixed
suse enterprise server 15 SP2
6.2.3-19.4
fixed
suse enterprise server 15 SP3
6.2.3-19.4
fixed
suse enterprise server 15 SP4
6.3.3-150400.29.15
fixed
suse enterprise server 15 SP5
6.3.3-150400.29.15
fixed
suse enterprise server 15 SP6
6.3.3-150600.36.10
fixed
suse enterprise server 15 SP7
6.3.3-150600.36.10
fixed
libptexenc1
suse enterprise desktop 15
1.3.5-9.35
fixed
suse enterprise desktop 15 SP1
1.3.5-11.8.4
fixed
suse enterprise desktop 15 SP2
1.3.5-19.4
fixed
suse enterprise desktop 15 SP3
1.3.5-19.4
fixed
suse enterprise desktop 15 SP4
1.3.9-150400.29.15
fixed
suse enterprise desktop 15 SP5
1.3.9-150400.29.15
fixed
suse enterprise desktop 15 SP6
1.3.9-150600.36.10
fixed
suse enterprise desktop 15 SP7
1.3.9-150600.36.10
fixed
suse enterprise sap 15
1.3.5-9.35
fixed
suse enterprise sap 15 SP1
1.3.5-11.8.4
fixed
suse enterprise sap 15 SP2
1.3.5-19.4
fixed
suse enterprise sap 15 SP3
1.3.5-19.4
fixed
suse enterprise sap 15 SP4
1.3.9-150400.29.15
fixed
suse enterprise sap 15 SP5
1.3.9-150400.29.15
fixed
suse enterprise sap 15 SP6
1.3.9-150600.36.10
fixed
suse enterprise sap 15 SP7
1.3.9-150600.36.10
fixed
suse enterprise server 15
1.3.5-9.35
fixed
suse enterprise server 15 SP1
1.3.5-11.8.4
fixed
suse enterprise server 15 SP2
1.3.5-19.4
fixed
suse enterprise server 15 SP3
1.3.5-19.4
fixed
suse enterprise server 15 SP4
1.3.9-150400.29.15
fixed
suse enterprise server 15 SP5
1.3.9-150400.29.15
fixed
suse enterprise server 15 SP6
1.3.9-150600.36.10
fixed
suse enterprise server 15 SP7
1.3.9-150600.36.10
fixed
libsynctex1
suse enterprise desktop 15
1.18-9.35
fixed
suse enterprise desktop 15 SP1
1.18-11.8.4
fixed
suse enterprise desktop 15 SP2
1.18-19.4
fixed
suse enterprise desktop 15 SP3
1.18-19.4
fixed
suse enterprise sap 15
1.18-9.35
fixed
suse enterprise sap 15 SP1
1.18-11.8.4
fixed
suse enterprise sap 15 SP2
1.18-19.4
fixed
suse enterprise sap 15 SP3
1.18-19.4
fixed
suse enterprise server 15
1.18-9.35
fixed
suse enterprise server 15 SP1
1.18-11.8.4
fixed
suse enterprise server 15 SP2
1.18-19.4
fixed
suse enterprise server 15 SP3
1.18-19.4
fixed
libsynctex2
suse enterprise desktop 15 SP4
1.21-150400.29.15
fixed
suse enterprise desktop 15 SP5
1.21-150400.29.15
fixed
suse enterprise desktop 15 SP6
1.21-150600.36.10
fixed
suse enterprise desktop 15 SP7
1.21-150600.36.10
fixed
suse enterprise sap 15 SP4
1.21-150400.29.15
fixed
suse enterprise sap 15 SP5
1.21-150400.29.15
fixed
suse enterprise sap 15 SP6
1.21-150600.36.10
fixed
suse enterprise sap 15 SP7
1.21-150600.36.10
fixed
suse enterprise server 15 SP4
1.21-150400.29.15
fixed
suse enterprise server 15 SP5
1.21-150400.29.15
fixed
suse enterprise server 15 SP6
1.21-150600.36.10
fixed
suse enterprise server 15 SP7
1.21-150600.36.10
fixed
libtexlua52-5
suse enterprise desktop 15
5.2.4-9.35
fixed
suse enterprise desktop 15 SP1
5.2.4-11.8.4
fixed
suse enterprise desktop 15 SP2
5.2.4-19.4
fixed
suse enterprise desktop 15 SP3
5.2.4-19.4
fixed
suse enterprise sap 15
5.2.4-9.35
fixed
suse enterprise sap 15 SP1
5.2.4-11.8.4
fixed
suse enterprise sap 15 SP2
5.2.4-19.4
fixed
suse enterprise sap 15 SP3
5.2.4-19.4
fixed
suse enterprise server 15
5.2.4-9.35
fixed
suse enterprise server 15 SP1
5.2.4-11.8.4
fixed
suse enterprise server 15 SP2
5.2.4-19.4
fixed
suse enterprise server 15 SP3
5.2.4-19.4
fixed
libtexlua53-5
suse enterprise desktop 15 SP4
5.3.6-150400.29.15
fixed
suse enterprise desktop 15 SP5
5.3.6-150400.29.15
fixed
suse enterprise desktop 15 SP6
5.3.6-150600.36.10
fixed
suse enterprise desktop 15 SP7
5.3.6-150600.36.10
fixed
suse enterprise sap 15 SP4
5.3.6-150400.29.15
fixed
suse enterprise sap 15 SP5
5.3.6-150400.29.15
fixed
suse enterprise sap 15 SP6
5.3.6-150600.36.10
fixed
suse enterprise sap 15 SP7
5.3.6-150600.36.10
fixed
suse enterprise server 15 SP4
5.3.6-150400.29.15
fixed
suse enterprise server 15 SP5
5.3.6-150400.29.15
fixed
suse enterprise server 15 SP6
5.3.6-150600.36.10
fixed
suse enterprise server 15 SP7
5.3.6-150600.36.10
fixed
texlive
suse enterprise desktop 15
2017.20170520-9.35
fixed
suse enterprise desktop 15 SP1
2017.20170520-11.8.4
fixed
suse enterprise desktop 15 SP2
2017.20170520-19.4
fixed
suse enterprise desktop 15 SP3
2017.20170520-19.4
fixed
suse enterprise desktop 15 SP4
2021.20210325-150400.29.15
fixed
suse enterprise desktop 15 SP5
2021.20210325-150400.29.15
fixed
suse enterprise desktop 15 SP6
2021.20210325-150600.36.10
fixed
suse enterprise desktop 15 SP7
2021.20210325-150600.36.10
fixed
suse enterprise sap 15
2017.20170520-9.35
fixed
suse enterprise sap 15 SP1
2017.20170520-11.8.4
fixed
suse enterprise sap 15 SP2
2017.20170520-19.4
fixed
suse enterprise sap 15 SP3
2017.20170520-19.4
fixed
suse enterprise sap 15 SP4
2021.20210325-150400.29.15
fixed
suse enterprise sap 15 SP5
2021.20210325-150400.29.15
fixed
suse enterprise sap 15 SP6
2021.20210325-150600.36.10
fixed
suse enterprise sap 15 SP7
2021.20210325-150600.36.10
fixed
suse enterprise server 15
2017.20170520-9.35
fixed
suse enterprise server 15 SP1
2017.20170520-11.8.4
fixed
suse enterprise server 15 SP2
2017.20170520-19.4
fixed
suse enterprise server 15 SP3
2017.20170520-19.4
fixed
suse enterprise server 15 SP4
2021.20210325-150400.29.15
fixed
suse enterprise server 15 SP5
2021.20210325-150400.29.15
fixed
suse enterprise server 15 SP6
2021.20210325-150600.36.10
fixed
suse enterprise server 15 SP7
2021.20210325-150600.36.10
fixed
texlive-bin-devel
suse enterprise desktop 15
2017.20170520-9.35
fixed
suse enterprise desktop 15 SP1
2017.20170520-11.8.4
fixed
suse enterprise desktop 15 SP2
2017.20170520-19.4
fixed
suse enterprise desktop 15 SP3
2017.20170520-19.4
fixed
suse enterprise desktop 15 SP4
2021.20210325-150400.29.15
fixed
suse enterprise desktop 15 SP5
2021.20210325-150400.29.15
fixed
suse enterprise desktop 15 SP6
2021.20210325-150600.36.10
fixed
suse enterprise desktop 15 SP7
2021.20210325-150600.36.10
fixed
suse enterprise sap 15
2017.20170520-9.35
fixed
suse enterprise sap 15 SP1
2017.20170520-11.8.4
fixed
suse enterprise sap 15 SP2
2017.20170520-19.4
fixed
suse enterprise sap 15 SP3
2017.20170520-19.4
fixed
suse enterprise sap 15 SP4
2021.20210325-150400.29.15
fixed
suse enterprise sap 15 SP5
2021.20210325-150400.29.15
fixed
suse enterprise sap 15 SP6
2021.20210325-150600.36.10
fixed
suse enterprise sap 15 SP7
2021.20210325-150600.36.10
fixed
suse enterprise server 15
2017.20170520-9.35
fixed
suse enterprise server 15 SP1
2017.20170520-11.8.4
fixed
suse enterprise server 15 SP2
2017.20170520-19.4
fixed
suse enterprise server 15 SP3
2017.20170520-19.4
fixed
suse enterprise server 15 SP4
2021.20210325-150400.29.15
fixed
suse enterprise server 15 SP5
2021.20210325-150400.29.15
fixed
suse enterprise server 15 SP6
2021.20210325-150600.36.10
fixed
suse enterprise server 15 SP7
2021.20210325-150600.36.10
fixed
texlive-kpathsea-devel
suse enterprise desktop 15
6.2.3-9.35
fixed
suse enterprise desktop 15 SP1
6.2.3-11.8.4
fixed
suse enterprise desktop 15 SP2
6.2.3-19.4
fixed
suse enterprise desktop 15 SP3
6.2.3-19.4
fixed
suse enterprise desktop 15 SP4
6.3.3-150400.29.15
fixed
suse enterprise desktop 15 SP5
6.3.3-150400.29.15
fixed
suse enterprise desktop 15 SP6
6.3.3-150600.36.10
fixed
suse enterprise desktop 15 SP7
6.3.3-150600.36.10
fixed
suse enterprise sap 15
6.2.3-9.35
fixed
suse enterprise sap 15 SP1
6.2.3-11.8.4
fixed
suse enterprise sap 15 SP2
6.2.3-19.4
fixed
suse enterprise sap 15 SP3
6.2.3-19.4
fixed
suse enterprise sap 15 SP4
6.3.3-150400.29.15
fixed
suse enterprise sap 15 SP5
6.3.3-150400.29.15
fixed
suse enterprise sap 15 SP6
6.3.3-150600.36.10
fixed
suse enterprise sap 15 SP7
6.3.3-150600.36.10
fixed
suse enterprise server 15
6.2.3-9.35
fixed
suse enterprise server 15 SP1
6.2.3-11.8.4
fixed
suse enterprise server 15 SP2
6.2.3-19.4
fixed
suse enterprise server 15 SP3
6.2.3-19.4
fixed
suse enterprise server 15 SP4
6.3.3-150400.29.15
fixed
suse enterprise server 15 SP5
6.3.3-150400.29.15
fixed
suse enterprise server 15 SP6
6.3.3-150600.36.10
fixed
suse enterprise server 15 SP7
6.3.3-150600.36.10
fixed
texlive-ptexenc-devel
suse enterprise desktop 15
1.3.5-9.35
fixed
suse enterprise desktop 15 SP1
1.3.5-11.8.4
fixed
suse enterprise desktop 15 SP2
1.3.5-19.4
fixed
suse enterprise desktop 15 SP3
1.3.5-19.4
fixed
suse enterprise desktop 15 SP4
1.3.9-150400.29.15
fixed
suse enterprise desktop 15 SP5
1.3.9-150400.29.15
fixed
suse enterprise desktop 15 SP6
1.3.9-150600.36.10
fixed
suse enterprise desktop 15 SP7
1.3.9-150600.36.10
fixed
suse enterprise sap 15
1.3.5-9.35
fixed
suse enterprise sap 15 SP1
1.3.5-11.8.4
fixed
suse enterprise sap 15 SP2
1.3.5-19.4
fixed
suse enterprise sap 15 SP3
1.3.5-19.4
fixed
suse enterprise sap 15 SP4
1.3.9-150400.29.15
fixed
suse enterprise sap 15 SP5
1.3.9-150400.29.15
fixed
suse enterprise sap 15 SP6
1.3.9-150600.36.10
fixed
suse enterprise sap 15 SP7
1.3.9-150600.36.10
fixed
suse enterprise server 15
1.3.5-9.35
fixed
suse enterprise server 15 SP1
1.3.5-11.8.4
fixed
suse enterprise server 15 SP2
1.3.5-19.4
fixed
suse enterprise server 15 SP3
1.3.5-19.4
fixed
suse enterprise server 15 SP4
1.3.9-150400.29.15
fixed
suse enterprise server 15 SP5
1.3.9-150400.29.15
fixed
suse enterprise server 15 SP6
1.3.9-150600.36.10
fixed
suse enterprise server 15 SP7
1.3.9-150600.36.10
fixed
texlive-synctex-devel
suse enterprise desktop 15
1.18-9.35
fixed
suse enterprise desktop 15 SP1
1.18-11.8.4
fixed
suse enterprise desktop 15 SP2
1.18-19.4
fixed
suse enterprise desktop 15 SP3
1.18-19.4
fixed
suse enterprise desktop 15 SP4
1.21-150400.29.15
fixed
suse enterprise desktop 15 SP5
1.21-150400.29.15
fixed
suse enterprise desktop 15 SP6
1.21-150600.36.10
fixed
suse enterprise desktop 15 SP7
1.21-150600.36.10
fixed
suse enterprise sap 15
1.18-9.35
fixed
suse enterprise sap 15 SP1
1.18-11.8.4
fixed
suse enterprise sap 15 SP2
1.18-19.4
fixed
suse enterprise sap 15 SP3
1.18-19.4
fixed
suse enterprise sap 15 SP4
1.21-150400.29.15
fixed
suse enterprise sap 15 SP5
1.21-150400.29.15
fixed
suse enterprise sap 15 SP6
1.21-150600.36.10
fixed
suse enterprise sap 15 SP7
1.21-150600.36.10
fixed
suse enterprise server 15
1.18-9.35
fixed
suse enterprise server 15 SP1
1.18-11.8.4
fixed
suse enterprise server 15 SP2
1.18-19.4
fixed
suse enterprise server 15 SP3
1.18-19.4
fixed
suse enterprise server 15 SP4
1.21-150400.29.15
fixed
suse enterprise server 15 SP5
1.21-150400.29.15
fixed
suse enterprise server 15 SP6
1.21-150600.36.10
fixed
suse enterprise server 15 SP7
1.21-150600.36.10
fixed
texlive-texlua-devel
suse enterprise desktop 15
5.2.4-9.35
fixed
suse enterprise desktop 15 SP1
5.2.4-11.8.4
fixed
suse enterprise desktop 15 SP2
5.2.4-19.4
fixed
suse enterprise desktop 15 SP3
5.2.4-19.4
fixed
suse enterprise desktop 15 SP4
5.3.6-150400.29.15
fixed
suse enterprise desktop 15 SP5
5.3.6-150400.29.15
fixed
suse enterprise desktop 15 SP6
5.3.6-150600.36.10
fixed
suse enterprise desktop 15 SP7
5.3.6-150600.36.10
fixed
suse enterprise sap 15
5.2.4-9.35
fixed
suse enterprise sap 15 SP1
5.2.4-11.8.4
fixed
suse enterprise sap 15 SP2
5.2.4-19.4
fixed
suse enterprise sap 15 SP3
5.2.4-19.4
fixed
suse enterprise sap 15 SP4
5.3.6-150400.29.15
fixed
suse enterprise sap 15 SP5
5.3.6-150400.29.15
fixed
suse enterprise sap 15 SP6
5.3.6-150600.36.10
fixed
suse enterprise sap 15 SP7
5.3.6-150600.36.10
fixed
suse enterprise server 15
5.2.4-9.35
fixed
suse enterprise server 15 SP1
5.2.4-11.8.4
fixed
suse enterprise server 15 SP2
5.2.4-19.4
fixed
suse enterprise server 15 SP3
5.2.4-19.4
fixed
suse enterprise server 15 SP4
5.3.6-150400.29.15
fixed
suse enterprise server 15 SP5
5.3.6-150400.29.15
fixed
suse enterprise server 15 SP6
5.3.6-150600.36.10
fixed
suse enterprise server 15 SP7
5.3.6-150600.36.10
fixed
Common Weakness Enumeration
References
http://www.debian.org/security/2017/dsa-3803
http://www.openwall.com/lists/oss-security/2017/03/05/1
http://www.securityfocus.com/bid/96593
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B7CNJ4HKX7X6V7VMN3UCU7KPY6IX4XRB/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VL6PUKPWEXYIPIAZRIX5ZLQWCSALVLFP/
https://scumjr.github.io/2016/11/28/pwning-coworkers-thanks-to-latex/
https://security.gentoo.org/glsa/201709-07
https://www.tug.org/svn/texlive?view=revision&revision=42605
http://www.debian.org/security/2017/dsa-3803
http://www.openwall.com/lists/oss-security/2017/03/05/1
http://www.securityfocus.com/bid/96593
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B7CNJ4HKX7X6V7VMN3UCU7KPY6IX4XRB/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VL6PUKPWEXYIPIAZRIX5ZLQWCSALVLFP/
https://scumjr.github.io/2016/11/28/pwning-coworkers-thanks-to-latex/
https://security.gentoo.org/glsa/201709-07
https://www.tug.org/svn/texlive?view=revision&revision=42605