Summary: | app-misc/cbrpager < 0.9.17 filename command execution (CVE-2008-2575) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Robert Buchholz (RETIRED) <rbu> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | maintainer-needed |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | B2 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Robert Buchholz (RETIRED)
2008-05-26 08:48:58 UTC
As noted in the Bugzilla, there's an update to the patch: http://cvs.fedoraproject.org/viewcvs/rpms/cbrpager/devel/cbrpager-0.9.17-zip-filen-escape.patch?rev=1.1 0.9.17 is in CVS, including the patch from comment #1. Arches, please test and mark stable: =app-misc/cbrpager-0.9.17 Target keywords : "amd64 release x86" x86 stable amd64 stable. All archs stable. Fixed in release snapshot. GLSA request filed. GLSA 200806-05 |