CVE-2009-2946

Published: 04 September 2009

Eval injection vulnerability in scripts/uscan.pl before Rev 1984 in devscripts allows remote attackers to execute arbitrary Perl code via crafted pathnames on distribution servers for upstream source code used in Debian GNU/Linux packages.

Priority

Medium

Status

Package Release Status
devscripts
Launchpad, Ubuntu, Debian
Upstream
Released (2.10.55)
Patches:
Vendor: http://www.debian.org/security/2009/dsa-1878