Source: libquvi Version: 0.4.1-1 Severity: important Tags: security Stepan Golosunov reported that libquvi looks for Lua helper scripts below the current working directory, leading to potential arbitrary code execution.
The corresponding code can be found in the scan_known_dirs function in src/libquvi/lua_wrap.c. -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]

