CVE-2014-1833

Published: 05 February 2014

Directory traversal vulnerability in uupdate in devscripts 2.14.1 allows remote attackers to modify arbitrary files via a crafted .orig.tar file, related to a symlink.

Priority

Medium

Status

Package Release Status
devscripts
Launchpad, Ubuntu, Debian
Upstream
Released (2.14.8)
Ubuntu 14.04 ESM (Trusty Tahr)
Released (2.14.1ubuntu0.1)
Patches:
Upstream: http://anonscm.debian.org/cgit/collab-maint/devscripts.git/diff/?id=0fef671