USN-5820-1: exuberant-ctags vulnerability
24 January 2023
Exuberant ctags could be make to perform arbitary command execution if run with maliciously crafted user input
- exuberant-ctags - build tag file indexes of source code definitions
Lorenz Hipp discovered a flaw in exuberant-ctags handling of the tag
filename command-line argument. A crafted tag filename specified
in the command line or in the configuration file could result in
arbitrary command execution.
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.