236 matches found
Fedora Update for devscripts FEDORA-2018-0132af2176
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 29 Update: devscripts-2.18.4-1.fc29
Scripts to make the life of a Debian Package maintainer easier...
[SECURITY] Fedora 28 Update: devscripts-2.18.4-1.fc28
Scripts to make the life of a Debian Package maintainer easier...
USN-3704-1: devscripts vulnerability
It was discovered that devscripts incorrectly handled certain YAML files. An attacker could possibly use this to execute arbitrary code...
USN-3704-1 devscripts vulnerability
It was discovered that devscripts incorrectly handled certain YAML files. An attacker could possibly use this to execute arbitrary code...
Debian devscripts arbitrary code execution vulnerability (CNVD-2018-13847)
Debian is a free operating system developed and maintained by the Debian Project. devscripts is a collection of system maintenance scripts. A security vulnerability in the scripts/grep-excuses.pl file in Debian devscripts 2.18.3 and earlier, which stems from the program's unsafe use of YAML::Syck...
CVE-2018-13043
scripts/grep-excuses.pl in Debian devscripts through 2.18.3 allows code execution through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing...
Code injection
scripts/grep-excuses.pl in Debian devscripts through 2.18.3 allows code execution through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing...
CVE-2018-13043
scripts/grep-excuses.pl in Debian devscripts through 2.18.3 allows code execution through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing...
DEBIAN-CVE-2018-13043
scripts/grep-excuses.pl in Debian devscripts through 2.18.3 allows code execution through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing...
CVE-2018-13043
scripts/grep-excuses.pl in Debian devscripts through 2.18.3 allows code execution through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing...
CVE-2018-13043
CVE-2018-13043 affects Debian devscripts up to 2.18.3, where scripts/grep-excuses.pl loads YAML unsafely (YAML::Syck without blessing), enabling code execution. Other advisories (Ubuntu USN-3704-1, Fedora updates) reference the same issue and indicate fixes to devscripts 2.18.4. The vulnerability...
CVE-2018-13043
scripts/grep-excuses.pl in Debian devscripts through 2.18.3 allows code execution through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing...
UBUNTU-CVE-2018-13043
scripts/grep-excuses.pl in Debian devscripts through 2.18.3 allows code execution through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing...
CVE-2018-13043
scripts/grep-excuses.pl in Debian devscripts through 2.18.3 allows code execution through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing...
CVE-2015-5704
scripts/licensecheck.pl in devscripts before 2.15.7 allows local users to execute arbitrary shell commands...
CVE-2015-5704
scripts/licensecheck.pl in devscripts before 2.15.7 allows local users to execute arbitrary shell commands...
DEBIAN-CVE-2015-5704
scripts/licensecheck.pl in devscripts before 2.15.7 allows local users to execute arbitrary shell commands...
Design/Logic Flaw
scripts/licensecheck.pl in devscripts before 2.15.7 allows local users to execute arbitrary shell commands...
CVE-2015-5704
scripts/licensecheck.pl in devscripts before 2.15.7 allows local users to execute arbitrary shell commands...