devscripts devel team

Top products

The 14 most recently published vulnerabilities affecting devscripts devel team.

• CVE-2015-5704scripts/licensecheck.pl in devscripts before 2.15.7 allows local users to execute arbitrary shell commands.7.8Sep 25, 2017
• CVE-2015-5705Argument injection vulnerability in devscripts before 2.15.7 allows remote attackers to write to arbitrary files via a crafted symlink and crafted filename.7.5Sep 6, 2017
• CVE-2014-1833Directory traversal vulnerability in uupdate in devscripts 2.14.1 allows remote attackers to modify arbitrary files via a crafted .orig.tar file, related to a symlink.5.0Feb 5, 2014
• CVE-2013-6888Uscan in devscripts before 2.13.9 allows remote attackers to execute arbitrary code via a crafted tarball.7.5Jan 7, 2014
• CVE-2013-7085Uscan in devscripts 2.13.5, when USCAN_EXCLUSION is enabled, allows remote attackers to delete arbitrary files via a whitespace character in a filename.5.8Dec 14, 2013
• CVE-2013-7050The get_main_source_dir function in scripts/uscan.pl in devscripts before 2.13.8, when using USCAN_EXCLUSION, allows remote attackers to execute arbitrary commands via shell metacharacters in a dir...6.8Dec 13, 2013
• CVE-2012-3500scripts/annotate-output.sh in devscripts before 2.12.2, as used in rpmdevtools before 8.3, allows local users to modify arbitrary files via a symlink attack on the temporary (1) standard output or ...1.2Oct 1, 2012
• CVE-2012-2242scripts/dget.pl in devscripts before 2.10.73 allows remote attackers to execute arbitrary commands via a crafted (1) .dsc or (2) .changes file, related to "arguments to external commands" that are ...6.8Oct 1, 2012
• CVE-2012-2241scripts/dget.pl in devscripts before 2.12.3 allows remote attackers to delete arbitrary files via a crafted (1) .dsc or (2) .changes file, probably related to a NULL byte in a filename.5.0Oct 1, 2012
• CVE-2012-2240scripts/dscverify.pl in devscripts before 2.12.3 allows remote attackers to execute arbitrary commands via unspecified vectors related to "arguments to external commands."7.5Oct 1, 2012
• CVE-2012-0212debdiff.pl in devscripts 2.10.x before 2.10.69 and 2.11.x before 2.11.4 allows remote attackers to execute arbitrary code via shell metacharacters in the file name argument.9.3Jun 16, 2012
• CVE-2012-0211debdiff.pl in devscripts 2.10.x before 2.10.69 and 2.11.x before 2.11.4 allows remote attackers to execute arbitrary code via a crafted tarball file name in the top-level directory of an original (...9.3Jun 16, 2012
• CVE-2012-0210debdiff.pl in devscripts 2.10.x before 2.10.69 and 2.11.x before 2.11.4 allows remote attackers to obtain system information and execute arbitrary code via the file name in a (1) .dsc or (2) .chang...9.3Jun 16, 2012
• CVE-2009-2946Eval injection vulnerability in scripts/uscan.pl before Rev 1984 in devscripts allows remote attackers to execute arbitrary Perl code via crafted pathnames on distribution servers for upstream sour...9.3Sep 4, 2009