Описание
ELSA-2023-2863: ctags security update (MODERATE)
[5.8-23]
- CVE-2022-4515, arbitrary code execution issue Resolves: rhbz#2153787
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
ctags
5.8-23.el8
ctags-etags
5.8-23.el8
Oracle Linux x86_64
ctags
5.8-23.el8
ctags-etags
5.8-23.el8
Связанные CVE
Связанные уязвимости
A flaw was found in Exuberant Ctags in the way it handles the "-o" option. This option specifies the tag filename. A crafted tag filename specified in the command line or in the configuration file results in arbitrary command execution because the externalSortTags() in sort.c calls the system(3) function in an unsafe way.
A flaw was found in Exuberant Ctags in the way it handles the "-o" option. This option specifies the tag filename. A crafted tag filename specified in the command line or in the configuration file results in arbitrary command execution because the externalSortTags() in sort.c calls the system(3) function in an unsafe way.
A flaw was found in Exuberant Ctags in the way it handles the "-o" option. This option specifies the tag filename. A crafted tag filename specified in the command line or in the configuration file results in arbitrary command execution because the externalSortTags() in sort.c calls the system(3) function in an unsafe way.
A flaw was found in Exuberant Ctags in the way it handles the "-o" opt ...