← Back to branch summary

~ubuntu-security/ubuntu-cve-tracker/master 

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20

PublicDate: 2007-11-05
Candidate: CVE-2007-5837
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5837
Description:
 GUI.pm in yarssr 0.2.2, when Gnome default URL handling is disabled, allows
 remote attackers to execute arbitrary commands via shell metacharacters in
 a link element in a feed.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.launchpad.net/ubuntu/+source/yarssr/+bug/162351
Priority: medium
Assigned-to: fujitsu
upstream_yarssr: released (0.2.2-3)
dapper_yarssr: released (0.2.2-1ubuntu0.6.06)
edgy_yarssr: released (0.2.2-1ubuntu0.6.10)
feisty_yarssr: released (0.2.2-1ubuntu0.7.04)
gutsy_yarssr: released (0.2.2-1ubuntu1.1)
devel_yarssr: not-affected