Hello,
The following was reported:
...
The function rs_filter_graph located in file
./librawstudio/rs-filter.c contains the following code:
g_string_append_printf(str, }\n);
g_file_set_contents(/tmp/rs-filter-graph, str-str, str-len, NULL);
ignore = system(dot -Tpng
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
rs_filter_graph in librawstudio/rs-filter.c
/tmp/rs-filter-graph
/tmp/rs-filter-graph.png
This allows the truncation of arbitrary files
Use CVE-2014-4978.
- --
CVE assignment team, MITRE CVE Numbering Authority
M/S M300
202 Burlington Road,
2 matches
Mail list logo