Candidate: CVE-2016-1239
PublicDate: 2022-02-19 17:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1239
 https://anonscm.debian.org/cgit/collab-maint/duck.git/commit/?id=b43b5bbf07973c54b8f1c581a941f4facc97177a (0.10)
Description:
 duck before 0.10 did not properly handle loading of untrusted code from the
 current directory.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]

Patches_duck:
 upstream: https://anonscm.debian.org/cgit/collab-maint/duck.git/commit/?id=b43b5bbf07973c54b8f1c581a941f4facc97177a
upstream_duck: released (0.7+deb8u1, 0.10)
precise_duck: DNE
precise/esm_duck: DNE
trusty_duck: DNE
trusty/esm_duck: DNE
vivid/stable-phone-overlay_duck: DNE
vivid/ubuntu-core_duck: DNE
wily_duck: ignored (reached end-of-life)
xenial_duck: released (0.7+deb8u1build0.16.04.1)

yakkety_duck: ignored (reached end-of-life)
zesty_duck: ignored (reached end-of-life)
artful_duck: ignored (reached end-of-life)
bionic_duck: not-affected (0.13)
cosmic_duck: not-affected (0.13)
devel_duck: not-affected (0.13)