CVE-2012-0212

Published: 15 February 2012

debdiff.pl in devscripts 2.10.x before 2.10.69 and 2.11.x before 2.11.4 allows remote attackers to execute arbitrary code via shell metacharacters in the file name argument.

Priority

Medium

Status

Package Release Status
devscripts
Launchpad, Ubuntu, Debian
Upstream
Released (2.10.69+squeeze2)