Bug#898317: xdg-open: Argument injection in xdg-open open_envvar
Salvatore Bonaccorso
carnil at debian.org
Thu May 10 08:56:18 BST 2018
Source: xdg-utils
Version: 1.1.1-1
Severity: important
Tags: patch security upstream
Forwarded: https://bugs.freedesktop.org/show_bug.cgi?id=103807
Hi
there is a argument injection vulenrability in xdg-open open_envvar.
Details:
https://bugs.freedesktop.org/show_bug.cgi?id=103807
https://cgit.freedesktop.org/xdg/xdg-utils/commit/?id=ce802d71c3466d1dbb24f2fe9b6db82a1f899bcb
Regards,
Salvatore
More information about the Pkg-freedesktop-maintainers
mailing list