User: Password:
Subscribe / Log in / New account

devscripts: file deletion

Package(s):devscripts CVE #(s):CVE-2013-7085
Created:January 3, 2014 Updated:October 28, 2014

From the CVE entry:

If USCAN_EXCLUSION is enabled, uscan doesn't correctly handle filenames containing whitespace. This can be abused my malicious upstream to delete files of their choice.

Fedora FEDORA-2013-23975 devscripts 2014-01-03

(Log in to post comments)

Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds