[CVE-2008-3907] Arbitrary code execution by crafted item URLs
Bug #275019 reported by
William Grant
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
newsbeuter (Ubuntu) |
Fix Released
|
High
|
William Grant | ||
Hardy |
Fix Released
|
High
|
William Grant | ||
Intrepid |
Fix Released
|
High
|
William Grant |
Bug Description
Binary package hint: newsbeuter
"The open-in-browser command in newsbeuter before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a feed URL."
I've requested a sync for Intrepid, and am preparing a patch for Hardy.
CVE References
Changed in newsbeuter: | |
assignee: | nobody → wgrant |
importance: | Undecided → High |
status: | New → In Progress |
assignee: | nobody → wgrant |
importance: | Undecided → High |
status: | New → Triaged |
Changed in newsbeuter: | |
status: | In Progress → Fix Committed |
To post a comment you must log in.
Here's the Hardy debdiff. Everything works, except the exploit.