CVE-2016-1253
CVE-2016-1253 affects the Debian most package. The vulnerability allows remote attackers to execute arbitrary commands by using shell metacharacters in the name of an LZMA-compressed file. Debian wheezy is vulnerable before 5.0.0a-2.2, jessie before 5.0.0a-2.3+deb8u1, and unstable before 5.0.0a-3...