[arch-security] [ASA-201708-15] newsbeuter: arbitrary code execution
Jelle van der Waa
jelle at archlinux.org
Mon Aug 21 11:13:38 UTC 2017
Arch Linux Security Advisory ASA-201708-15
Date : 2017-08-20
CVE-ID : CVE-2017-12904
Package : newsbeuter
Type : arbitrary code execution
Remote : Yes
Link : https://security.archlinux.org/AVG-384
The package newsbeuter before version 2.9-7 is vulnerable to arbitrary
Upgrade to 2.9-7.
# pacman -Syu "newsbeuter>=2.9-7"
The problem has been fixed upstream but no release is available yet.
Don't bookmark items.
An attacker can craft an RSS item with shell code in the title and/or
URL. When such an item is bookmarked, the shell will execute that code.
The vulnerability is triggered when bookmark-cmd is called.
A remote attacker can execute an arbitrary command on the affected host
by tricking a user into bookmarking a specially crafted RSS item.
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 488 bytes
Desc: not available
More information about the arch-security