7 matches found
SUSE-SU-2024:2621-1 Security update for devscripts
This update for devscripts fixes the following issues: - CVE-2014-1833: Fixed symlink directory traversal in uupdate bsc861514...
Fedora 21 : devscripts-2.14.10-1.fc21 (2014-12947)
Update to version 2.14.10, see http://metadata.ftp-master.debian.org/changelogs//main/d/devscripts/de vscripts2.14.10changelog for details. Update to version 2.14.9, see http://metadata.ftp-master.debian.org/changelogs//main/d/devscripts/de vscripts2.14.9changelog for details. Update to version...
Fedora 20 : devscripts-2.14.10-1.fc20 (2014-13063)
Update to version 2.14.10, see http://metadata.ftp-master.debian.org/changelogs//main/d/devscripts/de vscripts2.14.10changelog for details. Update to version 2.14.9, see http://metadata.ftp-master.debian.org/changelogs//main/d/devscripts/de vscripts2.14.9changelog for details. Update to version...
CVE-2014-1833
Directory traversal vulnerability in uupdate in devscripts 2.14.1 allows remote attackers to modify arbitrary files via a crafted .orig.tar file, related to a symlink...
CVE-2014-1833
Directory traversal vulnerability in uupdate in devscripts 2.14.1 allows remote attackers to modify arbitrary files via a crafted .orig.tar file, related to a symlink...
CVE-2014-1833
Directory traversal vulnerability in uupdate in devscripts 2.14.1 allows remote attackers to modify arbitrary files via a crafted .orig.tar file, related to a symlink...
CVE-2014-1833
CVE-2014-1833 is a directory traversal vulnerability in the uupdate tool of devscripts. A crafted .orig.tar file could allow a remote attacker to modify arbitrary files via symlink abuse. Multiple connected advisories confirm the issue and reference fixes in affected packages (e.g., SUSE, Ubuntu,...