On 31.05.2023 15:33, Markus Koschany wrote: Hi Markus,
The buster branch of texlive-bin repo contains the fix for CVE-2019-18604 too. Please consider up have it in the upload.Thanks for your help and explanations Max. I am going to release an updated version for Buster soon. Apparently I somehow missed the io_kpse_check_permissions function despite following the "Patching older versions" paragraph.
Hilmar -- sigfault
OpenPGP_0x0C871C4C653C1F59.asc
Description: OpenPGP public key
OpenPGP_signature
Description: OpenPGP digital signature
