VDB

GCVE-110-MAGEIA-2015-453

GCVE-110-MAGEIA-2015-453
Advisory Published
Vulnetix · Advisory published November 19, 2015
A format string vulnerability was found in CmdKeywords function when processing \keywords command in tex file. When the user runs latex2rtf with malicious crafted tex file, an attacker can execute arbitrary code. The variable 'keywords' in the function CmdKeywords may hold a malicious input string, which can be used as a format argument of vsnprintf (CVE-2015-8106).

Affected Products

VendorProductVersionsPlatforms
Mageialatex2rtf0 (affected), 2.3.8-3.1.mga5 (unaffected)

Browse GCVE Records

73,685 records in the GCVE database · Updated July 18, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›