Control: tags -1 patch
Hi,
On Tue, 10 Aug 2021 11:07:24 +0200 Ansgar wrote:
> Package: opensysusers
> Version: 0.6-2
> Severity: serious
> Tags: security upstream
> X-Debbugs-Cc: Debian Security Team
>
> opensysusers uses the shell's `eval` on everything in sysusers.d like
> there is no
Package: opensysusers
Version: 0.6-2
Severity: serious
Tags: security upstream
X-Debbugs-Cc: Debian Security Team
opensysusers uses the shell's `eval` on everything in sysusers.d like
there is no tomorrow. These files can contain shell meta-characters
that should not result in code execution,
2 matches
Mail list logo
