10 matches found
Fedora 23 : ruby-ncurses-1.3.1-16.fc23 / rubygem-sup-0.21.0-3.fc23 (2015-14929)
ruby-ncurses-1.3.1-16.fc23 - Fix Ruby 2.2 compatibility. rubygem- sup-0.21.0-3.fc23 - Relax rubygem-chronic dependency. - Temporary use ncurses, until rubygem-ncursesw is in Fedora. - Small cleanup. Note that Tenable Network Security has extracted the preceding description block directly from the...
CVE-2013-4479
lib/sup/messagechunks.rb in Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the contenttype of an email attachment...
CVE-2013-4479
lib/sup/messagechunks.rb in Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the contenttype of an email attachment...
CVE-2013-4479
CVE-2013-4479 affects the Sup email client: vulnerable component is lib/sup/message_chunks.rb. Exposed in versions before 0.13.2.1 and 0.14.x before 0.14.1.1, allowing remote attackers to execute arbitrary commands via shell metacharacters in the content_type of an email attachment. Impact is rem...
[SECURITY] [DSA 2805-1] sup-mail security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2805-1 [email protected] http://www.debian.org/security/ Luciano Bello November 27, 2013 http://www.debian.org/security/faq -...
Debian DSA-2805-1 : sup-mail - command injection
joernchen of Phenoelit discovered two command injection flaws in Sup, a console-based email client. An attacker might execute arbitrary command if the user opens a maliciously crafted email. - CVE-2013-4478 Sup wrongly handled the filename of attachments. - CVE-2013-4479 Sup did not sanitize the...
[SECURITY] [DSA 2805-1] sup-mail security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2805-1 [email protected] http://www.debian.org/security/ Luciano Bello November 27, 2013 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 2805-1 (sup-mail - command injection)
joernchen of Phenoelit discovered two command injection flaws in Sup, a console-based email client. An attacker might execute arbitrary command if the user opens a maliciously crafted email. CVE-2013-4478 Sup wrongly handled the filename of attachments. CVE-2013-4479 Sup did not sanitize the...
DSA-2805-1 sup-mail - remote command injection
Bulletin has no description...
Debian: Security Advisory (DSA-2805-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...