2 matches found
CVE-2019-1010309
CVE-2019-1010309 is a reserved duplicate of CVE-2019-9686 and should not be used as an active vulnerability entry. Connected data confirms the underlying issue: pacman before 5.1.3 allows directory traversal when installing a remote package via a URL (pacman -U ) due to an unsanitized Content-Dis...
[ASA-201903-7] pacman: arbitrary code execution
Arch Linux Security Advisory ASA-201903-7 ========================================= Severity: High Date : 2019-03-11 CVE-ID : CVE-2019-9686 Package : pacman Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-921 Summary ======= The package pacman before version...