CVE-2017-14176

Priority
Medium
Description
A malicious third-party can give a crafted "ssh://..." URL to an
unsuspecting victim using Bazaar, and an attempt to visit the URL can result
in any program that exists on the victim's machine being executed.
Ubuntu-Description
Adam Collard discovered that Bazaar did not properly handle host names
in 'bzr+ssh://' URLs. A remote attacker could use this to construct
a bazaar repository URL that when accessed could run arbitrary code
with the privileges of the user.
References
Bugs
Package
Source: bzr (LP Ubuntu Debian)
Upstream:released (3.0.0)
Ubuntu 17.10 (Artful Aardvark):released (2.7.0+bzr6622-6ubuntu1)
Ubuntu 12.04 ESM (Precise Pangolin):released (2.5.1-0ubuntu2.1)
Ubuntu 14.04 LTS (Trusty Tahr):released (2.6.0+bzr6593-1ubuntu1.6)
Ubuntu 16.04 LTS (Xenial Xerus):released (2.7.0-2ubuntu3.1)
Ubuntu 17.04 (Zesty Zapus):released (2.7.0+bzr6619-7ubuntu0.1)
More Information

Updated: 2017-10-24 15:14:17 UTC (commit 13577)