6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.01 Low
EPSS
Percentile
83.7%
Updated xdg-utils package fixes security vulnerability: John Houwer discovered a way to cause xdg-open, a tool that automatically opens URLs in a user’s preferred application, to execute arbitrary commands remotely (CVE-2014-9622). The xdg-utils has been updated to a much more recent snapshot, and has been patched to fix this issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 4 | noarch | xdg-utils | < 1.1.0-0.0.rc3.3.1 | xdg-utils-1.1.0-0.0.rc3.3.1.mga4 |