CVE-2007-5936
EPSS 0.10%
Description
dvips in teTeX and TeXlive 2007 and earlier allows local users to obtain sensitive information and modify certain data by creating certain temporary files before they are processed by dviljk, which can then be read or modified in place.
How to fix CVE-2007-5936
To remediate CVE-2007-5936, upgrade the affected package to a fixed version below.
- Debian/texlive-bin—upgrade to 2007-13 or later
Is CVE-2007-5936 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 2007-13