Branch sisyphus update bulletin.

Package perl-ack updated to version 2.12-alt1 for branch sisyphus in task 110035.

Published: 2013-12-14
Modified: 2024-11-21

CVE-2013-7069

ack 2.00 through 2.11_02 allows remote attackers to execute arbitrary code via a (1) --pager, (2) --regex, or (3) --output option in a .ackrc file in a directory to be searched.

Severity: MEDIUM (6.8)

References:

openSUSE-SU-2014:0142
openSUSE-SU-2014:0142
[oss-security] 20131211 Re: CVE Request: ack-grep: potential remote code execution via per-project .ackrc files
[oss-security] 20131211 Re: CVE Request: ack-grep: potential remote code execution via per-project .ackrc files
55982
55982
64196
64196
https://github.com/petdance/ack2/issues/399
https://github.com/petdance/ack2/issues/399

Version: 2.1.1

Branch sisyphus update on 2013-12-06

ALT-BU-2013-1423-1

ALT-PU-2013-1248-1

Closed vulnerabilities

CVE-2013-7069