All errata/sisyphus_e2k/ALT-PU-2021-4369-1
ALT-PU-2021-4369-1

Package update rebar in branch sisyphus_e2k

Version3.17.0-alt1
Task#0
Published2021-11-23
Max severityCRITICAL
Severity:

Closed issues (1)

CVE-2020-13802
CRITICAL9.8

Rebar3 versions 3.0.0-beta.3 to 3.13.2 are vulnerable to OS command injection via URL parameter of dependency specification.

Published: 2020-09-02Modified: 2024-11-21
CVSS 2.0CRITICAL 10.0
CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS 3.xCRITICAL 9.8
CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References