Summary: | <xfce-base/exo-{4.16.4,4.17.2}: can execute remote .desktop files | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Michał Górny <mgorny> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | IN_PROGRESS --- | ||
Severity: | major | CC: | ajak |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | B2 [glsa?] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 851204 | ||
Bug Blocks: |
Description
Michał Górny
2022-06-11 11:11:07 UTC
Cool. A non-public CVE that you can only find in commit history. https://gitlab.xfce.org/xfce/exo/-/commit/c71c04ff5882b2866a0d8506fb460d4ef796de9f https://gitlab.xfce.org/xfce/exo/-/commit/cc047717c3b5efded2cc7bd419c41a3d1f1e48b6 Thank you for filing! Cleanup done. Thanks! |