CVE-2009-2946

Priority
Description
Eval injection vulnerability in scripts/uscan.pl before Rev 1984 in
devscripts allows remote attackers to execute arbitrary Perl code via
crafted pathnames on distribution servers for upstream source code used in
Debian GNU/Linux packages.
Notes
 mdeslaur> watch for regression fixed in dsa-1878-2:
 mdeslaur> http://thread.gmane.org/gmane.comp.security.bugtraq/41022
 jdstrand> lenny7 should have all fixes
Assigned-to
jdstrand
Package
Upstream:released (2.10.55)
Patches:
Vendor:http://www.debian.org/security/2009/dsa-1878
More Information

Updated: 2019-03-19 11:50:37 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)