Lucene search
K

4 matches found

NVD
NVD
added 2017/04/26 5:59 a.m.22 views

CVE-2017-8283

dpkg-source in dpkg 1.3.0 through 1.18.23 is able to use a non-GNU patch program and does not offer a protection mechanism for blank-indented diff hunks, which allows remote attackers to conduct directory traversal attacks via a crafted Debian source package, as demonstrated by use of dpkg-source...

9.8CVSS9.3AI score0.04573EPSS
Exploits0References2
OSV
OSV
added 2017/04/26 5:59 a.m.6 views

CVE-2017-8283

dpkg-source in dpkg 1.3.0 through 1.18.23 is able to use a non-GNU patch program and does not offer a protection mechanism for blank-indented diff hunks, which allows remote attackers to conduct directory traversal attacks via a crafted Debian source package, as demonstrated by use of dpkg-source...

9.8CVSS6.9AI score
Exploits0References2
CVE
CVE
added 2017/04/26 5:28 a.m.69 views

CVE-2017-8283

CVE-2017-8283 concerns dpkg-source in dpkg 1.3.0 through 1.18.23, which can invoke a non-GNU patch program and lacks protection for blank-indented diff hunks. This enables remote attackers to perform directory traversal via a crafted Debian source package, demonstrated by using dpkg-source on Net...

9.8CVSS9.2AI score0.04573EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/04/26 5:28 a.m.23 views

CVE-2017-8283

dpkg-source in dpkg 1.3.0 through 1.18.23 is able to use a non-GNU patch program and does not offer a protection mechanism for blank-indented diff hunks, which allows remote attackers to conduct directory traversal attacks via a crafted Debian source package, as demonstrated by use of dpkg-source...

9.3AI score0.04573EPSS
Exploits0References2
Rows per page
Query Builder