4 matches found
Debian: Security Advisory (DSA-1477-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 1477-1] New yarssr packages fix arbitrary shell command execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1477-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 27, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1477-1] New yarssr packages fix arbitrary shell command execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1477-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 27, 2008 http://www.debian.org/security/faq -...
CVE-2007-5837
CVE-2007-5837 affects the yarssr RSS aggregator (version 0.2.2). The root cause is insufficient input sanitising in feed links, allowing remote attackers to trigger execution of arbitrary shell commands via shell metacharacters in a feed link when Gnome default URL handling is disabled. Debian se...