CVE-2019-18604
- Source
- https://cve.org/CVERecord?id=CVE-2019-18604
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-18604.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2019-18604
- Downstream
- Related
- Published
- 2019-10-29T19:15:19.703Z
- Modified
- 2026-04-09T06:37:36.941999Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
In axohelp.c before 1.3 in axohelp in axodraw2 before 2.1.1b, as distributed in TeXLive and other collections, sprintf is mishandled.
- References
Affected packages
Git / github.com/tex-live/texlive-source
Affected ranges
- Type
- GIT
- Repo
- https://github.com/tex-live/texlive-source
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
- Type
- GIT
- Repo
- https://github.com/tex-live/texlive-source
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
Other
build-svn50573
build-svn50687
build-svn50777
build-svn50838
build-svn50882
pretest-build-20190228
pretest-build-20190307
pretest-build-20190312
pretest-build-svn50419
pretest-build-svn50430
svn50904
svn51092
texlive-2018.*
texlive-2018.0
Database specific
unresolved_ranges
[
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.3"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "2.1.1"
}
]
},
{
"events": [
{
"introduced": "axohelp.c"
},
{
"fixed": "1.3"
}
]
},
{
"events": [
{
"introduced": "axodraw2"
},
{
"fixed": "2.1.1b"
}
]
}
]
source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-18604.json"