Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:75EBC98B60D356B638D11854DB313BF5:C72C9
HistoryJan 27, 2010 - 7:32 p.m.

[Backports-security-announce] Security Update for lintian

2010-01-2719:32:46
lists.debian.org
11

0.019 Low

EPSS

Percentile

88.7%

JSON

Raphael Geissert uploaded new packages for lintian which fixed the
following security problems:

CVE-2009-4013: missing control files sanitation

Control field names and values were not sanitised before using them
in certain operations that could lead to directory traversals.

Patch systems' control files were not sanitised before using them
in certain operations that could lead to directory traversals.

CVE-2009-4014: format string vulnerabilities

Multiple check scripts and the Lintian::Schedule module were using
user-provided input as part of the sprintf/printf format string.

CVE-2009-4015: arbitrary command execution

File names were not properly escaped when passing them as arguments to
certain commands, allowing the execution of other commands as pipes or
as a set of shell commands.

For the lenny-backports distribution the problems have been fixed in
version 2.3.2~bpo50+1.

Upgrade instructions

If you don't use pinning (see [1]) you have to update the package
manually via "apt-get -t lenny-backports install lintian".
[1] <http://backports.org/dokuwiki/doku.php?id=instructions&gt;

We recommend to pin the backports repository to 200 so that new
versions of installed backports will be installed automatically.

Package: *
Pin: release a=lenny-backports
Pin-Priority: 200

Related

ubuntu 1
seebug 1
nessus 2
debian 3
securityvulns 2
openvas 3
osv 1
prion 3
cve 3
cvelist 3
nvd 3
ubuntucve 3
debiancve 3
ubuntu
ubuntu
lintian vulnerabilities
2010-01-28 00:00:00
seebug
seebug
Debian Lintianๅคšไธชๆœฌๅœฐๅฎ‰ๅ…จๆผๆดž
2010-02-02 00:00:00
nessus
nessus
Debian DSA-1979-1 : lintian - multiple vulnerabilities
2010-02-24 00:00:00
Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 / 9.10 : lintian vulnerabilities (USN-891-1)
2010-01-28 00:00:00
debian
debian
[SECURITY] [DSA-1979-1] New lintian packages fix multiple vulnerabilities
2010-01-27 18:22:26
[SECURITY] [DSA-1979-1] New lintian packages fix multiple vulnerabilities
2010-01-27 18:22:26
[Backports-security-announce] Security Update for lintian
2010-01-27 18:28:56
securityvulns
securityvulns
lintian multiple security vulnerabilities
2010-01-28 00:00:00
[SECURITY] [DSA-1979-1] New lintian packages fix multiple vulnerabilities
2010-01-28 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-1979-1)
2023-03-08 00:00:00
Ubuntu: Security Advisory (USN-891-1)
2010-01-29 00:00:00
Ubuntu Update for lintian vulnerabilities USN-891-1
2010-01-29 00:00:00
osv
osv
lintian - multiple vulnerabilities
2010-01-27 00:00:00
prion
prion
Directory traversal
2010-02-02 16:30:00
Design/Logic Flaw
2010-02-02 16:30:00
Format string
2010-02-02 16:30:00
cve
cve
CVE-2009-4013
2022-10-03 16:24:01
CVE-2009-4015
2022-10-03 16:24:02
CVE-2009-4014
2022-10-03 16:24:04
cvelist
cvelist
CVE-2009-4013
2022-10-03 16:24:01
CVE-2009-4015
2022-10-03 16:24:02
CVE-2009-4014
2022-10-03 16:24:04
nvd
nvd
CVE-2009-4013
2010-02-02 16:30:02
CVE-2009-4015
2010-02-02 16:30:02
CVE-2009-4014
2010-02-02 16:30:02
ubuntucve
ubuntucve
CVE-2009-4013
2010-01-28 00:00:00
CVE-2009-4014
2010-01-28 00:00:00
CVE-2009-4015
2010-01-28 00:00:00
debiancve
debiancve
CVE-2009-4013
2022-10-03 16:24:01
CVE-2009-4014
2022-10-03 16:24:04
CVE-2009-4015
2022-10-03 16:24:02

0.019 Low

EPSS

Percentile

88.7%

JSON
Related for DEBIAN:75EBC98B60D356B638D11854DB313BF5:C72C9
ubuntu1seebug1nessus2debian3securityvulns2openvas3osv1prion3cve3cvelist3nvd3ubuntucve3debiancve3