Candidate: CVE-2013-2012
PublicDate: 2019-10-31 20:15:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2012
Description:
 autojump before 21.5.8 allows local users to gain privileges via a Trojan
 horse custom_install directory in the current working directory.
Ubuntu-Description: 
Notes: 
Bugs: 
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=706252
 https://bugzilla.redhat.com/show_bug.cgi?id=950777
Priority: medium
Discovered-by:
Assigned-to: 
CVSS:
 nvd: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H [7.3 HIGH]

Patches_autojump:
upstream_autojump: needs-triage
hardy_autojump: DNE
lucid_autojump: DNE
oneiric_autojump: ignored (reached end-of-life)
precise_autojump: ignored (reached end-of-life)
precise/esm_autojump: DNE (precise was needed)
quantal_autojump: ignored (reached end-of-life)
raring_autojump: ignored (reached end-of-life)
saucy_autojump: ignored (reached end-of-life)
trusty_autojump: not-affected (21.5.1-2)
trusty/esm_autojump: DNE (trusty was not-affected [21.5.1-2])
utopic_autojump: not-affected (21.5.1-2)
vivid_autojump: not-affected (21.5.1-2)
vivid/stable-phone-overlay_autojump: DNE
vivid/ubuntu-core_autojump: DNE
wily_autojump: not-affected (21.5.1-2)
xenial_autojump: not-affected (21.5.1-2)
yakkety_autojump: not-affected (21.5.1-2)
zesty_autojump: not-affected (21.5.1-2)
devel_autojump: not-affected (21.5.1-2)