ALT-PU-2013-1248-1
Closed vulnerabilities
Published: 2013-12-14
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2013-7069
ack 2.00 through 2.11_02 allows remote attackers to execute arbitrary code via a (1) --pager, (2) --regex, or (3) --output option in a .ackrc file in a directory to be searched.
Severity: MEDIUM (6.8)
References:
- openSUSE-SU-2014:0142
- openSUSE-SU-2014:0142
- [oss-security] 20131211 Re: CVE Request: ack-grep: potential remote code execution via per-project .ackrc files
- [oss-security] 20131211 Re: CVE Request: ack-grep: potential remote code execution via per-project .ackrc files
- 55982
- 55982
- 64196
- 64196
- https://github.com/petdance/ack2/issues/399
- https://github.com/petdance/ack2/issues/399