CVE-2012-0211
Publication date 15 February 2012
Last updated 24 July 2024
Ubuntu priority
debdiff.pl in devscripts 2.10.x before 2.10.69 and 2.11.x before 2.11.4 allows remote attackers to execute arbitrary code via a crafted tarball file name in the top-level directory of an original (.orig) source tarball of a source package.
Status
Package | Ubuntu Release | Status |
---|---|---|
devscripts | 11.10 oneiric |
Fixed 2.11.1ubuntu3.1
|
11.04 natty |
Fixed 2.10.69ubuntu2.1
|
|
10.10 maverick |
Fixed 2.10.67ubuntu1.1
|
|
10.04 LTS lucid |
Fixed 2.10.61ubuntu5.1
|
|
8.04 LTS hardy |
Fixed 2.10.11ubuntu5.8.04.5
|
References
Related Ubuntu Security Notices (USN)
- USN-1366-1
- devscripts vulnerabilities
- 15 February 2012