10 matches found
CVE-2024-38448
htags in GNU Global through 6.6.12 allows code execution in situations where dbpath aka -d is untrusted, because shell metacharacters may be used...
Linux Distros Unpatched Vulnerability : CVE-2024-38448
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - htags in GNU Global through 6.6.12 allows code execution in situations where dbpath aka -d is untrusted, because shell metacharacters may be used. CVE-2024-3844...
openSUSE Security Advisory (openSUSE-SU-2024:0210-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OPENSUSE-SU-2024:0210-1 Security update for global
This update for global fixes the following issues: - CVE-2024-38448: htags may allow code execution via untrusted dbpath boo1226420...
CVE-2024-38448
htags in GNU Global through 6.6.12 allows code execution in situations where dbpath aka -d is untrusted, because shell metacharacters may be used...
CVE-2024-38448
htags in GNU Global through 6.6.12 allows code execution in situations where dbpath aka -d is untrusted, because shell metacharacters may be used...
CVE-2024-38448
CVE-2024-38448 affects GNU Global htags up to 6.6.12, allowing code execution when dbpath (-d) is untrusted due to shell metacharacters. OpenSUSE advisories indicate a fix in global-6.6.13-1 (and related updates); apply the vendor patch to mitigate. No exploitation details are provided in the con...
CVE-2024-38448
htags in GNU Global through 6.6.12 allows code execution in situations where dbpath aka -d is untrusted, because shell metacharacters may be used...
CVE-2024-38448
htags in GNU Global through 6.6.12 allows code execution in situations where dbpath aka -d is untrusted, because shell metacharacters may be used...
CVE-2024-38448
htags in GNU Global through 6.6.12 allows code execution in situations where dbpath aka -d is untrusted, because shell metacharacters may be used...