[Secure-testing-team] Bug#705553: lintian: CVE-2013-1429 - path traversal/information disclosure
Niels Thykier
niels at thykier.net
Tue Apr 16 16:20:45 UTC 2013
Package: lintian
Version: 2.4.3
Severity: important
Tags: security upstream patch
Control: fixed -1 2.5.12
An "unimportant" security vulnerabilities have been found in Lintian.
In short, using crafted packages an attacker could have Lintian leak
information about the "host" system provided the raw log is available.
~Niels
More information about the Secure-testing-team
mailing list