Candidate: CVE-2016-7102
PublicDate: 2017-01-23 21:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7102
 https://owncloud.org/security/advisory/?id=oc-sa-2016-016
Description:
 ownCloud Desktop before 2.2.3 allows local users to execute arbitrary code
 and possibly gain privileges via a Trojan library in a "special path" in
 the C: drive.
Ubuntu-Description:
Notes:
 tyhicks> May be specific to Windows
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [8.4 HIGH]

Patches_owncloud-client:
upstream_owncloud-client: released (2.2.3)
precise_owncloud-client: DNE
precise/esm_owncloud-client: DNE
trusty_owncloud-client: ignored (reached end-of-life)
trusty/esm_owncloud-client: DNE (trusty was needs-triage)
vivid/stable-phone-overlay_owncloud-client: DNE
vivid/ubuntu-core_owncloud-client: DNE
xenial_owncloud-client: ignored (end of standard support, was needs-triage)
yakkety_owncloud-client: ignored (reached end-of-life)
zesty_owncloud-client: not-affected (2.2.4+dfsg-2ubuntu2)
artful_owncloud-client: not-affected (2.2.4+dfsg-2ubuntu2)
bionic_owncloud-client: not-affected (2.2.4+dfsg-2ubuntu2)
cosmic_owncloud-client: not-affected (2.2.4+dfsg-2ubuntu2)
disco_owncloud-client: not-affected (2.2.4+dfsg-2ubuntu2)
eoan_owncloud-client: not-affected (2.2.4+dfsg-2ubuntu2)
focal_owncloud-client: not-affected (2.2.4+dfsg-2ubuntu2)
groovy_owncloud-client: DNE
hirsute_owncloud-client: DNE
impish_owncloud-client: DNE
jammy_owncloud-client: not-affected (2.2.4+dfsg-2ubuntu2)
devel_owncloud-client: not-affected (2.2.4+dfsg-2ubuntu2)