Red Hat Security Advisory 2023-3661-01 - The texlive packages contain TeXLive, an implementation of TeX for Linux or UNIX systems. Issues addressed include a code execution vulnerability.
b57a94a77de0cc294afe761935aead5aa0fd9cbbb2d78bb8ae38e05dbb984ad6
Ubuntu Security Notice 6115-1 - Max Chernoff discovered that LuaTeX did not properly disable shell escape. An attacker could possibly use this issue to execute arbitrary shell commands.
0dcdb7dba102cbaf12dc94678349cca8c6c28a3e57f65bdb436b58404469aca1
Debian Linux Security Advisory 5406-1 - Max Chernoff discovered that improperly secured shell-escape in LuaTeX may result in arbitrary shell command execution, even with shell escape disabled, if specially crafted tex files are processed.
5295edf512ed1a9a3cee6103f9bf48379a4b69b3e5af6b362a9016821312bfd2