Описание
osc before 0.134 might allow remote OBS repository servers or package maintainers to execute arbitrary commands via a crafted (1) build log or (2) build status that contains an escape sequence for a terminal emulator.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 0.134.1-2 |
| hardy | DNE | |
| lucid | ignored | end of life |
| maverick | ignored | end of life |
| natty | ignored | end of life |
| oneiric | ignored | end of life |
| precise | released | 0.132.6-1ubuntu0.1 |
| quantal | not-affected | 0.134.1-2 |
| raring | not-affected | 0.134.1-2 |
| upstream | released | 0.134.0 |
Показывать по
Ссылки на источники
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
osc before 0.134 might allow remote OBS repository servers or package maintainers to execute arbitrary commands via a crafted (1) build log or (2) build status that contains an escape sequence for a terminal emulator.
osc before 0.134 might allow remote OBS repository servers or package ...
osc before 0.134 might allow remote OBS repository servers or package maintainers to execute arbitrary commands via a crafted (1) build log or (2) build status that contains an escape sequence for a terminal emulator.
EPSS
4.3 Medium
CVSS2