236 matches found
Fedora Update for devscripts FEDORA-2013-23192
Check for the Version of devscripts OpenVAS Vulnerability Test Fedora Update for devscripts FEDORA-2013-23192 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
UBUNTU-CVE-2014-1833
Directory traversal vulnerability in uupdate in devscripts 2.14.1 allows remote attackers to modify arbitrary files via a crafted .orig.tar file, related to a symlink...
Fedora Update for devscripts FEDORA-2013-23975
Check for the Version of devscripts OpenVAS Vulnerability Test Fedora Update for devscripts FEDORA-2013-23975 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
Fedora Update for devscripts FEDORA-2013-23975
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu Update for devscripts USN-2084-1
Check for the Version of devscripts OpenVAS Vulnerability Test $Id: gbubuntuUSN20841.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for devscripts USN-2084-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free...
Ubuntu: Security Advisory (USN-2084-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 / 13.10 : devscripts vulnerability (USN-2084-1)
It was discovered that the uscan tool incorrectly repacked archive files. If a user or automated system were tricked into processing specially crafted files, a remote attacker could possibly execute arbitrary code. Note that Tenable Network Security has extracted the preceding description block...
USN-2084-1: devscripts vulnerability
It was discovered that the uscan tool incorrectly repacked archive files. If a user or automated system were tricked into processing specially crafted files, a remote attacker could possibly execute arbitrary code...
devscripts uscan code execition
Code execution on server reply parsing...
[SECURITY] [DSA 2836-1] devscripts security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2836-1 [email protected] http://www.debian.org/security/ Raphael Geissert January 05, 2014 http://www.debian.org/security/faq -...
CVE-2013-6888
Uscan in devscripts before 2.13.9 allows remote attackers to execute arbitrary code via a crafted tarball...
DEBIAN-CVE-2013-6888
Uscan in devscripts before 2.13.9 allows remote attackers to execute arbitrary code via a crafted tarball...
CVE-2013-6888
Uscan in devscripts before 2.13.9 allows remote attackers to execute arbitrary code via a crafted tarball...
Code injection
Uscan in devscripts before 2.13.9 allows remote attackers to execute arbitrary code via a crafted tarball...
CVE-2013-6888
Uscan in devscripts before 2.13.9 allows remote attackers to execute arbitrary code via a crafted tarball...
CVE-2013-6888
Uscan in devscripts before 2.13.9 allows remote attackers to execute arbitrary code via a crafted tarball...
CVE-2013-6888
CVE-2013-6888 affects devscripts’ uscan component. Before version 2.13.9, uscan could execute arbitrary code via a crafted tarball downloaded from a malicious source. Debian/Ubuntu advisories note remote code execution with the vulnerable uscan and specify fixes: Debian wheezy updated to 2.12.6+d...
CVE-2013-6888
Uscan in devscripts before 2.13.9 allows remote attackers to execute arbitrary code via a crafted tarball...
Debian DSA-2836-1 : devscripts - arbitrary code execution
Several vulnerabilities have been discovered in uscan, a tool to scan upstream sites for new releases of packages, which is part of the devscripts package. An attacker controlling a website from which uscan would attempt to download a source tarball could execute arbitrary code with the privilege...
[SECURITY] [DSA 2836-1] devscripts security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2836-1 [email protected] http://www.debian.org/security/ Raphael Geissert January 05, 2014 http://www.debian.org/security/faq -...