Candidate: CVE-2020-9759
PublicDate: 2020-03-23 16:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9759
 https://lists.debian.org/debian-lts-announce/2020/03/msg00031.html
 https://security.gentoo.org/glsa/202003-51
 https://weechat.org/doc/security/
Description:
 A Vulnerability of LG Electronic web OS TV Emulator could allow an attacker
 to escalate privileges and overwrite certain files. This vulnerability is
 due to wrong environment setting. An attacker could exploit this
 vulnerability through crafted configuration files and executable files.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H [7.8 HIGH]


Patches_weechat:
 upstream: https://github.com/weechat/weechat/commit/c827d6fa864e2c0b79cea640c45272e83703081e
 upstream: https://github.com/weechat/weechat/commit/9904cb6d2eb40f679d8ff6557c22d53a3e3dc75a
upstream_weechat: released (2.7.1-1)
precise/esm_weechat: DNE
trusty_weechat: ignored (out of standard support)
trusty/esm_weechat: DNE
xenial_weechat: ignored (end of standard support, was needed)
bionic_weechat: needed
eoan_weechat: ignored (reached end-of-life)
focal_weechat: needed
groovy_weechat: ignored (reached end-of-life)
hirsute_weechat: ignored (reached end-of-life)
impish_weechat: needed
jammy_weechat: needed
devel_weechat: needed