1222126 – (CVE-2023-46048) VUL-1: CVE-2023-46048: texlive: NULL pointer dereference in texk/web2c/pdftexdir/writet1.c

Bug 1222126 (CVE-2023-46048) - VUL-1: CVE-2023-46048: texlive: NULL pointer dereference in texk/web2c/pdftexdir/writet1.c

Summary: VUL-1: CVE-2023-46048: texlive: NULL pointer dereference in texk/web2c/pdftex...

Status:	NEW

Alias:	CVE-2023-46048

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P4 - Low Severity: Minor
Target Milestone:	---
Assignee:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/399118/
Whiteboard:	CVSSv3.1:SUSE:CVE-2023-46048:3.3:(AV:...
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2024-03-28 12:17 UTC by SMASH SMASH
Modified:	2024-07-19 08:57 UTC (History)
CC List:	2 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
source-CVE-2023-46048.patch (5.57 KB, text/plain) 2024-04-02 12:58 UTC, Dr. Werner Fink	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description SMASH SMASH 2024-03-28 12:17:12 UTC

Tex Live 944e257 has a NULL pointer dereference in texk/web2c/pdftexdir/writet1.c. NOTE: this is disputed because it should be categorized as a usability problem.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-46048
https://www.cve.org/CVERecord?id=CVE-2023-46048
http://seclists.org/fulldisclosure/2024/Jan/65
https://tug.org/pipermail/tex-live/2023-August/049400.html

Comment 1 Dr. Werner Fink 2024-03-28 13:28:55 UTC

https://tug.org/pipermail/tex-live/2023-August/049402.html

Comment 2 Dr. Werner Fink 2024-03-28 14:04:51 UTC

TeXLive 2024 is save

Comment 3 Dr. Werner Fink 2024-04-02 12:58:49 UTC

Created attachment 873999 [details]
source-CVE-2023-46048.patch

NO idea if this compiles but it fixes all writet1.c files I found

Comment 7 Maintenance Automation 2024-04-15 20:30:06 UTC

SUSE-SU-2024:1296-1: An update that solves one vulnerability can now be installed.

Category: security (low)
Bug References: 1222126
CVE References: CVE-2023-46048
Maintenance Incident: [SUSE:Maintenance:33324](https://smelt.suse.de/incident/33324/)
Sources used:
SUSE Linux Enterprise Software Development Kit 12 SP5 (src):
 texlive-2013.20130620-22.11.1
SUSE Linux Enterprise High Performance Computing 12 SP5 (src):
 texlive-2013.20130620-22.11.1
SUSE Linux Enterprise Server 12 SP5 (src):
 texlive-2013.20130620-22.11.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5 (src):
 texlive-2013.20130620-22.11.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.

Comment 8 Maintenance Automation 2024-04-16 12:30:05 UTC

SUSE-SU-2024:1310-1: An update that solves two vulnerabilities can now be installed.

Category: security (low)
Bug References: 1222126, 1222127
CVE References: CVE-2023-46048, CVE-2023-46051
Maintenance Incident: [SUSE:Maintenance:33218](https://smelt.suse.de/incident/33218/)
Sources used:
openSUSE Leap 15.4 (src):
 texlive-2021.20210325-150400.31.6.4
openSUSE Leap 15.5 (src):
 texlive-2021.20210325-150400.31.6.4
Basesystem Module 15-SP5 (src):
 texlive-2021.20210325-150400.31.6.4
Desktop Applications Module 15-SP5 (src):
 texlive-2021.20210325-150400.31.6.4

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.