Описание
debmany in debian-goodies 0.88.1 allows attackers to execute arbitrary shell commands (because of an eval call) via a crafted .deb file. (The path is shown to the user before execution.)
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| debian-goodies | fixed | 0.88.2 | package | |
| debian-goodies | no-dsa | bookworm | package | |
| debian-goodies | no-dsa | bullseye | package | |
| debian-goodies | no-dsa | buster | package |
EPSS
Связанные уязвимости
debmany in debian-goodies 0.88.1 allows attackers to execute arbitrary shell commands (because of an eval call) via a crafted .deb file. (The path is shown to the user before execution.)
debmany in debian-goodies 0.88.1 allows attackers to execute arbitrary shell commands (because of an eval call) via a crafted .deb file. (The path is shown to the user before execution.)
debmany in debian-goodies 0.88.1 allows attackers to execute arbitrary shell commands (because of an eval call) via a crafted .deb file. (The path is shown to the user before execution.)
Уязвимость функции eval() инструмента для выбора справочных страниц debmany пакета утилит Debian-goodies, позволяющая нарушителю выполнить произвольные команды
EPSS