CVE-2013-6888
Published: 7 January 2014
Uscan in devscripts before 2.13.9 allows remote attackers to execute arbitrary code via a crafted tarball.
Priority
Status
| Package | Release | Status |
|---|---|---|
|
devscripts Launchpad, Ubuntu, Debian |
lucid |
Released
(2.10.61ubuntu5.6)
|
| precise |
Released
(2.11.6ubuntu1.6)
|
|
| quantal |
Released
(2.12.4ubuntu0.1)
|
|
| raring |
Released
(2.13.1ubuntu0.1)
|
|
| saucy |
Released
(2.13.4ubuntu0.1)
|
|
| upstream |
Released
(2.13.9)
|
|
|
Patches: upstream: http://anonscm.debian.org/gitweb/?p=collab-maint/devscripts.git;a=commit;h=02c6850d973e3e1246fde72edab27f03d63acc52 upstream: http://anonscm.debian.org/gitweb/?p=collab-maint/devscripts.git;a=commit;h=4b7e58ee6000cdefac0682601cec6ecce0137467 |
||