Source: libquvi
Version: 0.4.1-1
Severity: important
Tags: security

Stepan Golosunov reported that libquvi looks for Lua helper scripts
below the current working directory, leading to potential arbitrary code
execution.

The corresponding code can be found in the scan_known_dirs function in
src/libquvi/lua_wrap.c.


-- 
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]

Reply via email to