Shutter

Overview
Code
Bugs
Blueprints
Translations
Answers

Bug #1652600
Comment #2

Comment 2 for bug 1652600

Revision history for this message

In bugzilla.suse.com/ #1017571, Jsegitz-i (jsegitz-i) wrote on 2016-12-30:

CVE-2016-10081

/usr/bin/shutter in Shutter through 0.93.1 allows user-assisted remote attackers
to execute arbitrary commands via a crafted image name that is mishandled during
a "Run a plugin" action.

Details in https://bugs.launchpad.net/shutter/+bug/1652600

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10081
https://bugs.launchpad.net/shutter/+bug/1652600