USN-2649-1: devscripts vulnerability
16 June 2015
devscripts could be made to overwrite files.
- devscripts - scripts to make the life of a Debian Package maintainer easier
It was discovered that the uupdate tool incorrectly handled symlinks.
If a user or automated system were tricked into processing specially
crafted files, a remote attacker could possibly replace arbitrary files,
leading to a privilege escalation.
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.